For the past couple of months, I thought of implementing an internal Sandbox for my organization as you cannot rely totally on other community-based sandboxes available on the internet like Hybrid Analysis, Joe Sandbox, Reverse It, etc… Though they give you the best results, very much need arises to have an internal sandbox in your …
Over the past few days, I have been noticing a new threat for Linux operating systems and It was actually a night of September 19th, 2018 when I saw a new Linux malware that has been spreading in wild to form a botnet from the compromised machines and further spreading to add more victims to …
Hello readers! Today I will be writing a general post which I think can be helpful for the SOC analysts while creating incidents. So, let’s first understand what this article is about and how it will help you in your process. So, ATP safe links is actually a security feature of Microsoft that comes with …
Today I had a chance to investigate another SPAM email which we received in our queue and at least 5 such emails were reported to us. But was not sure how many such emails were received by the users in our organization. The email contains a password protected doc and the password was provided in …
I have observed a new but more of an old-school technique, attackers are adopting to phish the unsuspecting users and glean their credentials. And seriously this was a clever attempt. This was a case of SPAM mail that we received and after my full investigation on that Incident, this case encouraged me to write the …
