Incident Live 2142 / 2142
마지막 조회: 22:34:16
0개 선택됨
NEW 인시던트
2 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #3 | Resolved | HIGH | 'Script Engine Activity - 2431936258' along with 232 other i... | book-r0be6s1nc3 | Windows | 233 | 12-30 16:28 | 01-01 05:34 | - | |
| #1 | Resolved | CRITICAL | 'CVE-2024-24790 vulnerability in net/netip at docker.io/libr... | - | - | 3 | 12-30 16:00 | 01-01 05:46 | - | |
| #2 | Resolved | HIGH | 'File Drop - 3732557733' along with 36 other issues generate... | book-r0be6s1nc3, desktop-fnumv3u | Windows | 37 | 12-30 16:21 | 01-01 05:51 | - | |
| #14 | Resolved | MEDIUM | Suspicious executable detected | book-r0be6s1nc3 | Windows | 1 | 01-01 06:04 | 01-01 06:08 | - | |
| #15 | Resolved | HIGH | 'Network Connection - 1971152322' along with 2 other issues ... | book-r0be6s1nc3 | Windows | 3 | 01-01 06:09 | 01-01 06:16 | - | |
| #17 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | book-r0be6s1nc3, desktop-fnumv3u | Windows | 14 | 01-01 06:22 | 01-01 06:45 | - | |
| #18 | Resolved | HIGH | 'Script Activity - 3810243403' along with 3 other issues gen... | dwshin | Windows | 4 | 01-01 06:39 | 01-01 06:46 | - | |
| #16 | Resolved | HIGH | 'Masquerading - 221297964' along with 15 other issues genera... | desktop-fnumv3u | Windows | 16 | 01-01 06:19 | 01-01 06:47 | - | |
| #19 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | desktop-fnumv3u | Windows | 6 | 01-01 06:47 | 01-01 06:57 | - | |
| #23 | Resolved | HIGH | 'Malware Activity - 1320008962' along with 5 other issues ge... | dwshin | Windows | 6 | 01-01 07:02 | 01-01 07:14 | - | |
| #21 | Resolved | HIGH | 'Process Injection - 288965039' along with 3 other issues ge... | inbridge-ubt-24 | Linux | 4 | 01-01 06:56 | 01-01 07:15 | - | |
| #20 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | book-r0be6s1nc3 | Windows | 5 | 01-01 06:48 | 01-01 07:15 | - | |
| #24 | Resolved | HIGH | 'File Drop - 3732557733' along with 2 other issues generated... | dwshin | Windows | 3 | 01-01 07:15 | 01-01 07:19 | - | |
| #22 | Resolved | HIGH | 'File Drop - 1815185192' along with 6 other issues generated... | desktop-fnumv3u | Windows | 7 | 01-01 06:57 | 01-01 07:19 | - | |
| #25 | Resolved | HIGH | 'Regsvr32 may have run code from an untrusted source' along ... | desktop-fnumv3u | Windows | 5 | 01-01 07:18 | 01-01 07:22 | - | |
| #26 | Resolved | HIGH | 'WildFire Malware' along with 16 other issues generated by X... | dwshin | Windows | 17 | 01-01 07:21 | 01-01 08:47 | - | |
| #27 | Resolved | HIGH | 'Network Connection - 1971152322' along with 5 other issues ... | book-r0be6s1nc3 | Windows | 6 | 01-01 07:27 | 01-01 08:48 | - | |
| #28 | Resolved | HIGH | 'Powershell Activity - 3083271452' along with 24 other issue... | desktop-fnumv3u | Windows | 25 | 01-01 07:29 | 01-01 08:54 | - | |
| #32 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 3 | 01-01 08:50 | 01-01 08:54 | - | |
| #31 | Resolved | HIGH | 'Persistency - 779040014' along with 1 other issue generated... | inbridge-42 | Linux | 2 | 01-01 08:26 | 01-01 08:57 | - | |
| #29 | Resolved | HIGH | 'Persistency - 779040014' along with 2 other issues generate... | inbridge-ubt-24 | Linux | 3 | 01-01 08:26 | 01-01 08:58 | - | |
| #34 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 1 other is... | inbridge-42 | Linux | 2 | 01-01 08:58 | 01-01 08:59 | - | |
| #30 | Resolved | HIGH | 'Persistency - 779040014' along with 3 other issues generate... | in-bridge-40 | Linux | 4 | 01-01 08:26 | 01-01 09:00 | - | |
| #33 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | desktop-fnumv3u | Windows | 4 | 01-01 08:53 | 01-01 09:00 | - | |
| #35 | Resolved | HIGH | 'File Drop - 2775215878' along with 7 other issues generated... | dwshin | Windows | 8 | 01-01 09:00 | 01-01 09:04 | - | |
| #36 | Resolved | HIGH | 'Command-line arguments match Mimikatz execution' along with... | desktop-fnumv3u | Windows | 68 | 01-01 09:01 | 01-01 13:52 | - | |
| #37 | Resolved | HIGH | 'Malware Activity - 2737417481' along with 56 other issues g... | dwshin | Windows | 57 | 01-01 09:07 | 01-01 13:53 | - | |
| #38 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | book-r0be6s1nc3 | Windows | 11 | 01-01 09:11 | 01-01 13:53 | - | |
| #42 | Resolved | HIGH | Certutil.exe downloads a suspicious file | desktop-fnumv3u | Windows | 1 | 01-01 13:54 | 01-01 14:03 | - | |
| #41 | Resolved | HIGH | 'Process Injection - 288965039' along with 11 other issues g... | inbridge-42 | Linux | 12 | 01-01 13:54 | 01-01 14:03 | - | |
| #39 | Resolved | HIGH | 'Persistency - 779040014' along with 21 other issues generat... | inbridge-ubt-24 | Linux | 22 | 01-01 13:53 | 01-01 14:03 | - | |
| #40 | Resolved | HIGH | 'Process Injection - 288965039' along with 11 other issues g... | in-bridge-40 | Linux | 12 | 01-01 13:53 | 01-01 14:03 | - | |
| #43 | Resolved | HIGH | 'Process Injection - 288965039' along with 11 other issues g... | inbridge-ubt-24 | Linux | 12 | 01-01 14:04 | 01-01 14:10 | - | |
| #44 | Resolved | HIGH | 'Process Injection - 288965039' along with 6 other issues ge... | inbridge-42 | Linux | 7 | 01-01 14:04 | 01-01 14:10 | - | |
| #45 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40 | Linux | 5 | 01-01 14:05 | 01-01 14:10 | - | |
| #46 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 2 o... | desktop-fnumv3u | Windows | 3 | 01-01 14:06 | 01-01 14:10 | - | |
| #50 | Resolved | HIGH | 'Command-line arguments match Mimikatz execution' along with... | desktop-fnumv3u | Windows | 6 | 01-01 14:16 | 01-01 14:31 | - | |
| #49 | Resolved | HIGH | 'Process Injection - 288965039' along with 1 other issue gen... | in-bridge-40 | Linux | 2 | 01-01 14:12 | 01-01 14:31 | - | |
| #47 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | inbridge-ubt-24 | Linux | 6 | 01-01 14:10 | 01-01 14:31 | - | |
| #48 | Resolved | HIGH | 'Process Injection - 288965039' along with 1 other issue gen... | inbridge-42 | Linux | 2 | 01-01 14:11 | 01-01 14:31 | - | |
| #13 | Resolved | CRITICAL | In order to decrypt SM2 encrypted data an application is exp... | - | - | 1 | 12-31 14:01 | 01-01 14:31 | - | |
| #12 | Resolved | CRITICAL | BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an... | - | - | 1 | 12-31 14:01 | 01-01 14:31 | - | |
| #11 | Resolved | CRITICAL | The use of `Module._load()` can bypass the policy mechanism ... | - | - | 1 | 12-31 14:01 | 01-01 14:31 | - | |
| #10 | Resolved | CRITICAL | Git is a revision control system. Prior to versions 2.45.1, ... | - | - | 1 | 12-31 14:01 | 01-01 14:31 | - | |
| #9 | Resolved | CRITICAL | Git is distributed revision control system. `git log` can di... | - | - | 1 | 12-31 14:00 | 01-01 14:31 | - | |
| #8 | Resolved | CRITICAL | NET, .NET Framework, and Visual Studio Security Feature Bypa... | - | - | 1 | 12-31 14:00 | 01-01 14:31 | - | |
| #7 | Resolved | CRITICAL | Git is distributed revision control system. gitattributes ar... | - | - | 1 | 12-31 14:00 | 01-01 14:31 | - | |
| #6 | Resolved | CRITICAL | 'CVE-2024-54534 vulnerability in Java Runtime Environment 8.... | - | - | 2 | 12-31 14:00 | 01-01 14:31 | - | |
| #5 | Resolved | CRITICAL | 'CVE-2024-47606 vulnerability in Java Runtime Environment 8.... | - | - | 2 | 12-31 14:00 | 01-01 14:31 | - | |
| #4 | Resolved | CRITICAL | 'CVE-2025-55315 vulnerability in Microsoft Visual Studio 202... | - | - | 7 | 12-31 13:59 | 01-01 14:31 | - |