Incident Live 2144 / 2144
마지막 조회: 01:24:12
0개 선택됨
NEW 인시던트
3 개
* NEW 상태 인시던트를 모두 resolved_security_testing 으로 처리합니다
AUTO RESOLVE
OFF
5분마다 NEW 인시던트 중 알럿 5개 이상 자동 리졸브
| ID | Status | Severity | Description | Hosts | OS | Alerts | Created | Modified | Actions | |
|---|---|---|---|---|---|---|---|---|---|---|
| #2051 | Resolved | HIGH | 'Process Injection - 288965039' along with 11 other issues g... | in-bridge-40, inbridge-42 +1 | Linux | 12 | 01-19 16:41 | 01-19 16:43 | - | |
| #2052 | Resolved | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | desktop-fnumv3u | Windows | 5 | 01-19 16:52 | 01-19 19:00 | - | |
| #2053 | Resolved | HIGH | 'File Drop - 1815185192' along with 5 other issues generated... | teahee | Windows | 6 | 01-19 16:56 | 01-19 18:00 | - | |
| #2054 | Resolved | HIGH | 'Process Injection - 288965039' along with 8 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 9 | 01-19 17:00 | 01-19 17:03 | - | |
| #2055 | Resolved | HIGH | 'Persistency - 779040014' along with 4 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 5 | 01-19 17:08 | 01-19 19:01 | - | |
| #2056 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-19 17:13 | 01-19 19:01 | - | |
| #2057 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | dwshin | Windows | 5 | 01-19 18:06 | 01-19 18:35 | - | |
| #2058 | Resolved | HIGH | 'Persistency - 1983659418' along with 4 other issues generat... | teahee | Windows | 5 | 01-19 18:07 | 01-19 19:06 | - | |
| #2059 | Resolved | HIGH | 'File Drop - 2775215878' along with 5 other issues generated... | dwshin | Windows | 6 | 01-19 18:41 | 01-19 19:10 | - | |
| #2060 | Resolved | HIGH | 'File Drop - 1815185192' along with 4 other issues generated... | teahee | Windows | 5 | 01-19 19:13 | 01-19 19:30 | - | |
| #2061 | resolved_duplicate_incident | HIGH | 'File Drop - 3732557733' along with 5 other issues generated... | dwshin | Windows | 6 | 01-19 19:13 | 01-19 20:00 | - | |
| #2062 | Resolved | HIGH | 'Persistency - 779040014' along with 6 other issues generate... | in-bridge-40, inbridge-ubt-24 | Linux | 7 | 01-19 19:30 | 01-19 20:03 | - | |
| #2063 | Other | CRITICAL | 'CVE-2021-24112 vulnerability in system.drawing.common at /s... | - | - | 8 | 01-19 19:34 | 01-19 19:40 | - | |
| #2064 | Resolved | CRITICAL | 'CVE-2023-45853 vulnerability in zlib at /symantec_manager' ... | - | - | 8 | 01-19 19:34 | 01-19 19:40 | - | |
| #2065 | resolved_duplicate_incident | HIGH | 'Powershell Activity - 3083271452' along with 4 other issues... | teahee | Windows | 5 | 01-19 19:41 | 01-19 20:00 | - | |
| #2066 | Resolved | HIGH | 'Process Injection - 288965039' along with 5 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 6 | 01-19 19:46 | 01-19 20:02 | - | |
| #2067 | Resolved | MEDIUM | 'WildFire Malware' along with 5 other issues generated by XD... | desktop-fnumv3u | Windows | 6 | 01-19 19:51 | 01-19 22:10 | - | |
| #2068 | Resolved | HIGH | Process executes an obfuscated command for fetching remote f... | in-bridge-40 | Linux | 1 | 01-19 20:00 | 01-19 20:03 | - | |
| #2069 | Resolved | CRITICAL | 'CVE-2021-24112 vulnerability in system.drawing.common at do... | - | - | 112 | 01-19 20:00 | 01-20 11:00 | - | |
| #2070 | Resolved | CRITICAL | 'CVE-2023-45853 vulnerability in zlib at docker.io/library/s... | - | - | 112 | 01-19 20:00 | 01-20 11:00 | - | |
| #2071 | Resolved | HIGH | 'Process Injection - 288965039' along with 4 other issues ge... | in-bridge-40, inbridge-42 +1 | Linux | 5 | 01-19 20:03 | 01-19 20:06 | - | |
| #2072 | Resolved | HIGH | Process executes an obfuscated command for fetching remote f... | in-bridge-40 | Linux | 1 | 01-19 20:03 | 01-19 20:06 | - | |
| #2073 | resolved_duplicate_incident | HIGH | 'Persistency - 1983659418' along with 4 other issues generat... | teahee | Windows | 5 | 01-19 20:05 | 01-19 21:00 | - | |
| #2074 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | dwshin | Windows | 5 | 01-19 20:05 | 01-19 20:20 | - | |
| #2075 | Resolved | MEDIUM | Process action type = execution AND target process cmd = *so... | inbridge-42 | Linux | 1 | 01-19 20:05 | 01-19 20:06 | - | |
| #2076 | Resolved | HIGH | 'Staged Malware Activity - 2123359011' along with 546 other ... | in-bridge-40, inbridge-42 +1 | Linux | 547 | 01-19 20:06 | 01-20 11:00 | - | |
| #2077 | Resolved | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | dwshin | Windows | 5 | 01-19 20:26 | 01-19 20:50 | - | |
| #2078 | resolved_duplicate_incident | HIGH | 'Credential Gathering Protection - 3380811775' along with 6 ... | dwshin | Windows | 7 | 01-19 21:01 | 01-19 21:30 | - | |
| #2079 | Known Issue | HIGH | 'Script Activity - 3055004603' along with 4 other issues gen... | teahee | Windows | 5 | 01-19 21:08 | 01-19 22:00 | - | |
| #2080 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-19 21:50 | 01-19 22:30 | - | |
| #2081 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | teahee | Windows | 5 | 01-19 22:04 | 01-19 22:40 | - | |
| #2082 | resolved_duplicate_incident | HIGH | 'File Drop - 2775215878' along with 4 other issues generated... | dwshin | Windows | 5 | 01-19 22:31 | 01-19 23:00 | - | |
| #2083 | False Positive | HIGH | 'File Drop - 1815185192' along with 4 other issues generated... | teahee | Windows | 5 | 01-19 22:43 | 01-19 23:20 | - | |
| #2084 | False Positive | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 6 | 01-19 23:00 | 01-19 23:40 | - | |
| #2085 | resolved_duplicate_incident | HIGH | 'Script Activity - 3055004603' along with 4 other issues gen... | desktop-fnumv3u | Windows | 5 | 01-19 23:09 | 01-20 00:30 | - | |
| #2086 | Other | HIGH | 'Persistency - 1983659418' along with 7 other issues generat... | teahee | Windows | 8 | 01-19 23:35 | 01-20 00:30 | - | |
| #2087 | Resolved | HIGH | 'Evasion Technique - 527483761' along with 4 other issues ge... | dwshin | Windows | 5 | 01-19 23:42 | 01-20 00:20 | - | |
| #2088 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-20 00:24 | 01-20 00:40 | - | |
| #2089 | resolved_duplicate_incident | HIGH | 'File Drop - 1815185192' along with 4 other issues generated... | teahee | Windows | 5 | 01-20 00:40 | 01-20 00:50 | - | |
| #2090 | Resolved | HIGH | 'Script Engine Activity - 2909583408' along with 6 other iss... | dwshin | Windows | 7 | 01-20 00:41 | 01-20 01:00 | - | |
| #2091 | Resolved | HIGH | 'Script Engine Activity - 2909583408' along with 4 other iss... | desktop-fnumv3u, teahee | Windows | 5 | 01-20 00:56 | 01-20 01:40 | - | |
| #2092 | resolved_duplicate_incident | HIGH | 'Powershell Activity - 3990759154' along with 4 other issues... | dwshin, teahee | Windows | 5 | 01-20 00:58 | 01-20 01:30 | - | |
| #2093 | Other | HIGH | 'Staged Malware Activity - 4061872954' along with 4 other is... | dwshin | Windows | 5 | 01-20 01:41 | 01-20 02:00 | - | |
| #2094 | Resolved | HIGH | 'Powershell Activity - 3083271452' along with 4 other issues... | teahee | Windows | 5 | 01-20 01:49 | 01-20 03:20 | - | |
| #2095 | resolved_duplicate_incident | HIGH | 'File Drop - 3732557733' along with 5 other issues generated... | dwshin | Windows | 6 | 01-20 02:02 | 01-20 02:40 | - | |
| #2096 | Other | HIGH | 'File Drop - 1815185192' along with 4 other issues generated... | desktop-fnumv3u, teahee | Windows | 5 | 01-20 02:19 | 01-20 02:50 | - | |
| #2097 | Resolved | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 8 | 01-20 02:40 | 01-20 03:20 | - | |
| #2098 | Known Issue | MEDIUM | 'WildFire Malware' along with 4 other issues generated by XD... | desktop-fnumv3u | Windows | 5 | 01-20 03:22 | 01-20 05:30 | - | |
| #2099 | Other | HIGH | 'Script Engine Activity - 2909583408' along with 5 other iss... | teahee | Windows | 6 | 01-20 03:26 | 01-20 04:30 | - | |
| #2100 | Known Issue | HIGH | 'Protection Against Security Measures Bypass Techniques - 19... | dwshin | Windows | 5 | 01-20 03:33 | 01-20 04:00 | - |