all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Stories from the SOC - RapperBot, Mirai Botnet - C2, CDIR Drop over SSH

Add to bookmarks
Jan. 31, 2023, 11:05 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Stories from the SOC is a blog series that describes recent real-world security incident investigations conducted and reported by the AT&T SOC analyst team for AT&T Managed Extended Detection and Response customers. 


Executive summary


Since mid-June 2022, AT&T Managed Extended Detection and Response (MXDR) Security Operations Center (SOC) observed an enormous number of attacks from Mirai botnet-C2 attempting to gain access to SSH servers instead of Telnet.


Due to the various tactics, techniques, and procedures (TTP) observed, this attack has …

access amp analyst attacks blog botnet center customers detection detection and response executive extended detection extended detection and response incident investigations june managed managed extended detection and response mirai mirai botnet operations rapperbot response security security incident security operations security operations center series servers soc soc analyst ssh stories team world

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Tuesday, May 14th, 2024 https://isc.sans.edu/podcastdetail/8980, (Tue, May 14th) 3 hours ago | malware.news
topic
Apple Patches Everything: macOS, iOS, iPadOS, watchOS, tvOS updated., (Tue, May 14th) 3 hours ago | malware.news
apple apple patches cve cve-2024 +18
Distribution of DanaBot Malware via Word Files Detected by AhnLab EDR 4 hours ago | malware.news
ahnlab danabot distributed distribution +19
Initial Access to IIS Web Servers Detected by AhnLab EDR 4 hours ago | malware.news
access ahnlab attack can +24
Monthly Threat Actor Group Intelligence Report, March 2024 (KOR) 5 hours ago | malware.news
actor intelligence march nshc +3
Identity Resilience: The Next Frontier in Security - Ray Zadjmool - BSW #350 5 hours ago | malware.news
article frontier identity link +6
Malicious PyPI ‘requests’ fork hides backdoor in PNG file 6 hours ago | malware.news
article backdoor file fork +8
Microsoft is again named a Leader in the 2024 Gartner® Magic Quadrant™ for Security Information … 7 hours ago | malware.news
event event management gartner information +11
SigmaHQ Rules Release Highlights — r2024–05–13 8 hours ago | malware.news
article link may release +2

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Senior Manager - Vendor management/ Compliance

@ Sprinklr | India - Haryana - Gurgaon
View on infosec-jobs.com

DevSecOps Engineer

@ Swiss Re | Hyderabad, TG, IN
View on infosec-jobs.com

Cyber Security Architect

@ Endeavour Group | Surry Hills, Australia
View on infosec-jobs.com

Principal Product Manager (Network/Security Management) - NetSec

@ Palo Alto Networks | Bengaluru, India
View on infosec-jobs.com

Lead Security Analyst

@ Deloitte | Sydney, NSW, AU
View on infosec-jobs.com
View more jobs