Incident Live 2146 / 2146
마지막 조회: 07:17:15
0개 선택됨
NEW 인시던트
4 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #1496 | Resolved | HIGH | 'Process Injection - 288965039' along with 8 other issues ge... | inbridge-42 | Linux | 9 | 01-13 18:05 | 01-13 18:19 | - | |
| #1495 | Resolved | MEDIUM | 'WildFire Malware' along with 5 other issues generated by XD... | teahee | Windows | 6 | 01-13 18:01 | 01-13 20:15 | - | |
| #1494 | Resolved | HIGH | 'Script Activity - 3055004603' along with 4 other issues gen... | dwshin | Windows | 5 | 01-13 18:01 | 01-13 18:30 | - | |
| #1493 | Resolved | HIGH | 'Process Injection - 288965039' along with 14 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 15 | 01-13 18:00 | 01-13 18:04 | - | |
| #1492 | Resolved | HIGH | 'Persistency - 456694134' along with 12 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 13 | 01-13 17:50 | 01-13 18:04 | - | |
| #1491 | Resolved | HIGH | 'Process Injection - 288965039' along with 10 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-13 17:47 | 01-13 17:54 | - | |
| #1490 | Resolved | HIGH | 'Process Injection - 288965039' along with 8 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 9 | 01-13 17:34 | 01-13 17:38 | - | |
| #1489 | Resolved | HIGH | 'Persistency - 779040014' along with 21 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 22 | 01-13 17:30 | 01-13 17:33 | - | |
| #1488 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 | Linux | 5 | 01-13 17:30 | 01-13 17:30 | - | |
| #1487 | Resolved | HIGH | 'Persistency - 779040014' along with 1 other issue generated... | inbridge-ubt-24 | Linux | 2 | 01-13 17:30 | 01-13 17:30 | - | |
| #1486 | Resolved | HIGH | 'Persistency - 779040014' along with 5 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 6 | 01-13 17:29 | 01-13 17:30 | - | |
| #1485 | Resolved | MEDIUM | 'Perl script connecting to network' along with 2 other issue... | inbridge-42, inbridge-ubt-24 | Linux | 3 | 01-13 17:14 | 01-13 17:30 | - | |
| #1484 | Resolved | HIGH | 'Process Injection - 288965039' along with 9 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 10 | 01-13 17:12 | 01-13 17:18 | - | |
| #1483 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-13 17:03 | 01-13 17:08 | - | |
| #1482 | Resolved | HIGH | 'Process Injection - 288965039' along with 7 other issues ge... | in-bridge-40, inbridge-ubt-24 | Linux | 8 | 01-13 16:59 | 01-13 17:03 | - | |
| #1481 | Resolved | HIGH | 'Bypass Attempt - 911079455' along with 4 other issues gener... | dwshin | Windows | 5 | 01-13 16:58 | 01-13 17:49 | - | |
| #1480 | Resolved | HIGH | 'Impair Defenses - 2363038651' along with 4 other issues gen... | teahee | Windows | 5 | 01-13 16:55 | 01-13 17:40 | - | |
| #1479 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 4 other is... | in-bridge-40, inbridge-42 | Linux | 5 | 01-13 16:40 | 01-13 17:13 | - | |
| #1478 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 6 | 01-13 16:30 | 01-13 16:58 | - | |
| #1477 | Resolved | HIGH | 'Persistency - 779040014' along with 19 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 20 | 01-13 16:23 | 01-13 16:43 | - | |
| #1476 | Resolved | HIGH | 'Process Injection - 288965039' along with 9 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 10 | 01-13 16:20 | 01-13 16:22 | - | |
| #1475 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 | Linux | 5 | 01-13 15:57 | 01-13 16:17 | - | |
| #1474 | Resolved | HIGH | 'File Drop - 3732557733' along with 6 other issues generated... | dwshin | Windows | 7 | 01-13 15:55 | 01-13 16:28 | - | |
| #1473 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 7 other is... | in-bridge-40, inbridge-ubt-24 | Linux | 8 | 01-13 15:40 | 01-13 16:17 | - | |
| #1472 | Known Issue | HIGH | 'Bypass Attempt - 911079455' along with 4 other issues gener... | dwshin | Windows | 5 | 01-13 15:34 | 01-13 15:50 | - | |
| #1471 | Resolved | HIGH | 'Process Injection - 288965039' along with 11 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 12 | 01-13 15:30 | 01-13 15:57 | - | |
| #1470 | Resolved | HIGH | 'Process Injection - 288965039' along with 23 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 24 | 01-13 15:22 | 01-13 15:27 | - | |
| #1469 | Resolved | HIGH | 'Persistency - 779040014' along with 4 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 5 | 01-13 15:22 | 01-13 15:30 | - | |
| #1468 | Resolved | HIGH | 'Persistency - 779040014' along with 6 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 7 | 01-13 15:20 | 01-13 15:22 | - | |
| #1467 | Resolved | HIGH | 'Process Injection - 288965039' along with 15 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 16 | 01-13 15:20 | 01-13 15:22 | - | |
| #1466 | Resolved | HIGH | 'Process Injection - 288965039' along with 8 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 9 | 01-13 15:14 | 01-13 15:20 | - | |
| #1465 | Other | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | dwshin | Windows | 5 | 01-13 14:59 | 01-13 15:30 | - | |
| #1464 | Resolved | HIGH | 'Process Injection - 288965039' along with 9 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 10 | 01-13 14:49 | 01-13 15:06 | - | |
| #1463 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 6 other is... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-13 14:38 | 01-13 14:46 | - | |
| #1462 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 9 other is... | in-bridge-40, inbridge-42 +1 | Linux | 10 | 01-13 14:31 | 01-13 15:10 | - | |
| #1461 | Resolved | HIGH | 'Persistency - 779040014' along with 11 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 12 | 01-13 14:26 | 01-13 14:36 | - | |
| #1460 | Resolved | HIGH | 'Ransomware Activity - 426137677' along with 5 other issues ... | dwshin | Windows | 6 | 01-13 14:24 | 01-13 14:56 | - | |
| #1459 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-13 14:03 | 01-13 14:26 | - | |
| #1458 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-13 13:56 | 01-13 16:02 | - | |
| #1457 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | dwshin | Windows | 5 | 01-13 13:35 | 01-13 14:21 | - | |
| #1456 | Resolved | HIGH | 'Persistency - 3227545572' along with 9 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 10 | 01-13 13:30 | 01-13 14:06 | - | |
| #1455 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 6 other is... | inbridge-ubt-24 | Linux | 7 | 01-13 13:17 | 01-13 13:45 | - | |
| #1454 | Resolved | HIGH | 'Persistency - 456694134' along with 19 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 20 | 01-13 13:16 | 01-13 13:20 | - | |
| #1453 | Resolved | HIGH | 'Process Injection - 288965039' along with 13 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 14 | 01-13 13:14 | 01-13 13:15 | - | |
| #1452 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 11 other i... | in-bridge-40, inbridge-42 +1 | Linux | 12 | 01-13 13:14 | 01-13 13:15 | - | |
| #1451 | Resolved | MEDIUM | Process action type = execution AND target process cmd = *so... | inbridge-42 | Linux | 1 | 01-13 13:13 | 01-13 13:14 | - | |
| #1450 | Resolved | HIGH | Shared object injection using LD_PRELOAD on a shell command | in-bridge-40 | Linux | 1 | 01-13 13:12 | 01-13 13:14 | - | |
| #1449 | Known Issue | HIGH | 'Evasion Technique - 527483761' along with 5 other issues ge... | dwshin | Windows | 6 | 01-13 12:31 | 01-13 13:30 | - | |
| #1448 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | teahee | Windows | 5 | 01-13 11:50 | 01-13 13:40 | - | |
| #1447 | Resolved | HIGH | 'File Drop - 2775215878' along with 4 other issues generated... | dwshin | Windows | 5 | 01-13 11:43 | 01-13 12:29 | - |