Incident Live 2146 / 2146
마지막 조회: 08:06:28
0개 선택됨
NEW 인시던트
4 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #1401 | Resolved | HIGH | 'Persistency - 779040014' along with 8 other issues generate... | in-bridge-40, inbridge-42 +1 | Linux | 9 | 01-12 07:48 | 01-12 08:10 | - | |
| #1402 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 6 other is... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-12 08:09 | 01-12 09:02 | - | |
| #1403 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-12 08:18 | 01-12 08:21 | - | |
| #1404 | Resolved | HIGH | 'Persistency - 779040014' along with 8 other issues generate... | in-bridge-40, inbridge-42 +1 | Linux | 9 | 01-12 08:23 | 01-12 08:36 | - | |
| #1405 | Resolved | HIGH | 'File Drop - 3732557733' along with 4 other issues generated... | dwshin | Windows | 5 | 01-12 08:32 | 01-12 09:01 | - | |
| #1406 | Resolved | HIGH | 'Process Injection - 288965039' along with 10 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-12 09:00 | 01-12 09:01 | - | |
| #1407 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-12 09:01 | 01-12 11:13 | - | |
| #1408 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-12 09:07 | 01-12 09:30 | - | |
| #1409 | Resolved | HIGH | 'Persistency - 779040014' along with 1 other issue generated... | inbridge-42 | Linux | 2 | 01-12 09:08 | 01-12 09:30 | - | |
| #1410 | Resolved | HIGH | 'Process Injection - 288965039' along with 6 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 7 | 01-12 09:17 | 01-12 09:30 | - | |
| #1411 | Resolved | HIGH | Process executes an obfuscated command for fetching remote f... | in-bridge-40 | Linux | 1 | 01-12 09:17 | 01-12 09:30 | - | |
| #1412 | Resolved | HIGH | 'Process Injection - 288965039' along with 8 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 9 | 01-12 09:30 | 01-12 09:32 | - | |
| #1413 | Resolved | HIGH | 'Process Injection - 288965039' along with 10 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-12 09:32 | 01-12 09:37 | - | |
| #1414 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 5 o... | dwshin | Windows | 6 | 01-12 09:35 | 01-12 10:20 | - | |
| #1415 | Resolved | MEDIUM | 'WildFire Malware' along with 1 other issue generated by XDR... | book-r0be6s1nc3 | Windows | 2 | 01-12 09:38 | 01-12 22:43 | - | |
| #1416 | Resolved | HIGH | 'Persistency - 779040014' along with 10 other issues generat... | in-bridge-40, inbridge-42 +1 | Linux | 11 | 01-12 10:20 | 01-12 10:23 | - | |
| #1417 | Resolved | HIGH | 'File Drop - 3732557733' along with 4 other issues generated... | dwshin | Windows | 5 | 01-12 10:24 | 01-12 10:48 | - | |
| #1418 | Resolved | HIGH | 'Staged Malware Activity - 4061872954' along with 4 other is... | dwshin | Windows | 5 | 01-12 10:52 | 01-12 11:28 | - | |
| #1419 | Resolved | HIGH | 'Script Activity - 3055004603' along with 4 other issues gen... | dwshin | Windows | 5 | 01-12 11:34 | 01-12 12:19 | - | |
| #1420 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-12 11:41 | 01-12 13:51 | - | |
| #1421 | Resolved | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | dwshin | Windows | 5 | 01-12 12:19 | 01-12 12:47 | - | |
| #1422 | Other | HIGH | 'Powershell Activity - 3990759154' along with 8 other issues... | dwshin | Windows | 9 | 01-12 12:51 | 01-12 13:51 | - | |
| #1423 | Resolved | HIGH | 'Masquerading - 221297964' along with 6 other issues generat... | dwshin | Windows | 7 | 01-12 13:54 | 01-12 14:40 | - | |
| #1424 | Resolved | HIGH | 'Process Injection - 288965039' along with 7 other issues ge... | in-bridge-40, inbridge-ubt-24 | Linux | 8 | 01-12 14:00 | 01-12 14:30 | - | |
| #1425 | Resolved | HIGH | 'Persistency - 456694134' along with 4 other issues generate... | in-bridge-40, inbridge-42 | Linux | 5 | 01-12 14:00 | 01-13 13:14 | - | |
| #1426 | False Positive | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-12 14:31 | 01-12 16:50 | - | |
| #1427 | Resolved | HIGH | 'Process Injection - 288965039' along with 337 other issues ... | in-bridge-40, inbridge-42 +1 | Linux | 338 | 01-12 14:40 | 01-12 22:43 | - | |
| #1428 | Resolved | HIGH | 'Ransomware Activity - 426137677' along with 6 other issues ... | dwshin | Windows | 7 | 01-12 14:43 | 01-12 15:20 | - | |
| #1429 | Other | HIGH | 'Network Connection - 1971152322' along with 4 other issues ... | dwshin | Windows | 5 | 01-12 15:25 | 01-12 16:30 | - | |
| #1430 | Resolved | CRITICAL | MiniZip in zlib through 1.3 has an integer overflow and resu... | - | - | 1 | 01-12 15:49 | 01-12 22:43 | - | |
| #1431 | Resolved | CRITICAL | .NET Core Remote Code Execution Vulnerability | - | - | 1 | 01-12 15:49 | 01-12 22:43 | - | |
| #1432 | Other | HIGH | 'Malware Activity - 1320008962' along with 5 other issues ge... | dwshin | Windows | 6 | 01-12 16:35 | 01-12 17:20 | - | |
| #1433 | resolved_duplicate_incident | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | teahee | Windows | 5 | 01-12 16:56 | 01-12 19:10 | - | |
| #1434 | resolved_duplicate_incident | HIGH | 'Evasion Technique - 527483761' along with 6 other issues ge... | dwshin | Windows | 7 | 01-12 17:24 | 01-12 18:00 | - | |
| #1435 | Resolved | HIGH | 'Credential Gathering Protection - 510630382' along with 4 o... | dwshin | Windows | 5 | 01-12 18:06 | 01-12 18:40 | - | |
| #1436 | Known Issue | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-12 18:41 | 01-12 19:10 | - | |
| #1437 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 22 other issue... | dwshin | Windows | 23 | 01-12 19:23 | 01-12 22:43 | - | |
| #1438 | Resolved | HIGH | 'Script Engine Activity - 2909583408' along with 11 other is... | teahee | Windows | 12 | 01-12 20:01 | 01-12 22:43 | - | |
| #1439 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 5 o... | dwshin | Windows | 6 | 01-12 22:46 | 01-12 23:21 | - | |
| #1440 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | teahee | Windows | 5 | 01-12 23:14 | 01-13 00:17 | - | |
| #1441 | Resolved | HIGH | 'Credential Gathering Protection - 122198212' along with 4 o... | dwshin | Windows | 5 | 01-12 23:42 | 01-13 00:07 | - | |
| #1442 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | teahee | Windows | 5 | 01-13 00:23 | 01-13 01:18 | - | |
| #1443 | Resolved | HIGH | 'File Drop - 3732557733' along with 64 other issues generate... | dwshin | Windows | 65 | 01-13 00:25 | 01-13 09:41 | - | |
| #1444 | Resolved | MEDIUM | 'WildFire Malware' along with 15 other issues generated by X... | teahee | Windows | 16 | 01-13 01:20 | 01-13 09:41 | - | |
| #1445 | Resolved | MEDIUM | 'WildFire Malware' along with 3 other issues generated by XD... | teahee | Windows | 4 | 01-13 09:44 | 01-13 11:37 | - | |
| #1446 | Resolved | HIGH | 'File Drop - 3732557733' along with 17 other issues generate... | dwshin | Windows | 18 | 01-13 09:44 | 01-13 11:37 | - | |
| #1447 | Resolved | HIGH | 'File Drop - 2775215878' along with 4 other issues generated... | dwshin | Windows | 5 | 01-13 11:43 | 01-13 12:29 | - | |
| #1448 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | teahee | Windows | 5 | 01-13 11:50 | 01-13 13:40 | - | |
| #1449 | Known Issue | HIGH | 'Evasion Technique - 527483761' along with 5 other issues ge... | dwshin | Windows | 6 | 01-13 12:31 | 01-13 13:30 | - | |
| #1450 | Resolved | HIGH | Shared object injection using LD_PRELOAD on a shell command | in-bridge-40 | Linux | 1 | 01-13 13:12 | 01-13 13:14 | - |