OPSEC Cybersecurity News LiveMar 17, 2023
Kerberos protocol security

https://security.stackexchange.com/questions/269171/kerberos-protocol-security

#indicatorofcompromise #attackprevention #attackvector #protocols #kerberos
Kerberos protocol security

I have a question in my mind regarding the inner workings of Kerberos protocol. If the generation of the session key is somehow insecure, does this compromise the security of the Kerberos protocol?...

Information Security Stack Exchange
OPSEC Cybersecurity News LiveMar 5, 2023
What are some symptoms of malware exfiltrating data in packet captures?

https://security.stackexchange.com/questions/268927/what-are-some-symptoms-of-malware-exfiltrating-data-in-packet-captures

#indicatorofcompromise #wireshark #malware
What are some symptoms of malware exfiltrating data in packet captures?

I am concerned that my Linux laptop has been compromised with malware that is remotely and regularly monitoring my activity. I ran Wireshark for a day to see if I could find any symptoms of data be...

Information Security Stack Exchange
OPSEC Cybersecurity News LiveDec 16, 2022
What are the indications on my smartphone that I have security problem/data leak/trojan

https://security.stackexchange.com/questions/267111/what-are-the-indications-on-my-smartphone-that-i-have-security-problem-data-leak

#indicatorofcompromise #android
What are the indications on my smartphone that I have security problem/data leak/trojan

I am using a paid (non-free) antivirus on my Android 13. I am curious however, what would be the signs/"symptoms" in case I have data leakage/security issues/trojan on my smartphone? How ...

Information Security Stack Exchange
Show threadMLF.Nov 18, 2022

@pixelnull Could be an idea to actually write it out as #IndicatorOfCompromise because there are multiple things that shorten to IOC and not all of them are relevant to us :)

We have way more chars to work with in our posts here, after all!

pwdApr 30, 2022
#emotet now uses #powershell commands in .lnk files, the string is obfuscated with nulls/blank spaces so the target is not shown
some #Indicatorofcompromise #ioc :
- .ps1 files in %tmp%
- focusmedica[.]in
- demo34[.]ckg[.]hk
- colegiounamuno[.]es
- cipro[.]mx
- filmmogzivota[.]rs
- creemo[.]pl
command for checking %tmp%:
 dir C:\users\%username%\AppData\Local\Temp\*.ps1
heise online (inoffiziell)Feb 8, 2022
Woran Administratoren eine Kompromittierung ihrer Maschinen mit der Ransomware Lockbit 2.0 erkennen, erläutert das FBI in einer aktuellen Anleitung.
FBI gibt Hilfestellung zur Erkennung von Lockbit-Befall
FBI gibt Hilfestellung zur Erkennung von Lockbit-Befall

Woran Administratoren eine Kompromittierung ihrer Maschinen mit der Ransomware Lockbit 2.0 erkennen, erläutert das FBI in einer aktuellen Anleitung.

heise online