#soc
2025-04-17 RDP #Honeypot IOCs - 7998 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.181 - 7302
159.89.6.147 - 420
211.185.207.14 - 57
Top ASNs:
AS212238 - 7302
AS14061 - 423
AS4766 - 57
Top Accounts:
hello - 7740
142.93.8.59 - 162
Domain - 18
Top ISPs:
Datacamp Limited - 7302
DigitalOcean, LLC - 423
Korea Telecom - 57
Top Clients:
Unknown - 7998
Top Software:
Unknown - 7998
Top Keyboards:
Unknown - 7998
Top IP Classification:
hosting & proxy - 7302
hosting - 468
Unknown - 210
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/8yL0pkU7
2025-04-17 RDP #Honeypot IOCs - 5332 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.181 - 4868
159.89.6.147 - 280
211.185.207.14 - 38
Top ASNs:
AS212238 - 4868
AS14061 - 282
AS4766 - 38
Top Accounts:
hello - 5160
142.93.8.59 - 108
Domain - 12
Top ISPs:
Datacamp Limited - 4868
DigitalOcean, LLC - 282
Korea Telecom - 38
Top Clients:
Unknown - 5332
Top Software:
Unknown - 5332
Top Keyboards:
Unknown - 5332
Top IP Classification:
hosting & proxy - 4868
hosting - 312
Unknown - 140
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/Xed8e9un
2025-04-17 RDP #Honeypot IOCs - 2666 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.181 - 2434
159.89.6.147 - 140
211.185.207.14 - 19
Top ASNs:
AS212238 - 2434
AS14061 - 141
AS4766 - 19
Top Accounts:
hello - 2580
142.93.8.59 - 54
Domain - 6
Top ISPs:
Datacamp Limited - 2434
DigitalOcean, LLC - 141
Korea Telecom - 19
Top Clients:
Unknown - 2666
Top Software:
Unknown - 2666
Top Keyboards:
Unknown - 2666
Top IP Classification:
hosting & proxy - 2434
hosting - 156
Unknown - 70
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/HetMefCE
Сюрприз в логах MaxPatrol VM — удаляем пароли перед отправкой в поддержку
При внедрении и сопровождении систем информационной безопасности, часто участвуют три стороны: вендор (разработчик), интегратор (технический подрядчик) и заказчик (организация-клиент). Вендор отвечает за разработку, обновления и вторую линию поддержки. Интегратор выполняет внедрение, настройку, доработки и оказывает первую линию поддержки. Заказчик работает с системой на практике, формирует требования и может передавать логи диагностики через интегратора в вендорскую поддержку. При этом ответственность за обезличивание или фильтрацию чувствительных данных в логах часто лежит на стороне заказчика. На приктике заказчик не всегда проверяет, а какие на самом деле данные в логах выгружаются.
TSMC: i chip a 2nm alzano i costi per Apple e Qualcomm
#2nm #Apple #AppleA20 #Aumenti #Chip #Chipset #CostiDiProduzione #Dimensity9600 #iPhone18 #MediaTek #Notizie #Prezzi #Processori #Qualcomm #Semiconduttori #Smartphone #Snapdragon8Elite3 #SoC #TechNews #Tecnologia #TSMC
https://www.ceotech.it/tsmc-i-chip-a-2nm-alzano-i-costi-per-apple-e-qualcomm/
CMF Phone 2 Pro confermato con chipset Dimensity 7300 Pro
#Chip #Chipset #CMFPhone #CMFPhone2Pro #Dimensity7300Pro #MidRange #Nothing #Notizie #Novità #Prestazioni #Processori #Smartphone #SoC #Specifiche #SpecificheTecniche #TechNews #Tecnologia
https://www.ceotech.it/cmf-phone-2-pro-confermato-con-chipset-dimensity-7300-pro/
This NLRB whistleblower complaint is a horror story for any CERT team. As a CTI/SOC analyst, if I see spawned powershell invoking web requests to some random-ass AI API reverse-engineering tool/headless browser repository, large outbound byte transfers measured in GBs, or conditional access policies/MFA being tampered with, you’re getting isolated and we’re standing up an incident response bridge. Also, someone on your team has an info stealer on their device if they’re seeing attempted logins from a foreign country within fifteen minutes of account creation.
This is an insider threat case of the worst kind: one your security team gets to watch but can’t do a damn thing to stop.
2025-04-15 RDP #Honeypot IOCs - 8103 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.47 - 5064
156.146.57.181 - 2304
222.100.239.9 - 453
Top ASNs:
AS212238 - 7368
AS4766 - 486
AS48721 - 63
Top Accounts:
hello - 7839
142.93.8.59 - 177
Administr - 27
Top ISPs:
Datacamp Limited - 7368
Korea Telecom - 486
Flyservers S.A. - 63
Top Clients:
Unknown - 8103
Top Software:
Unknown - 8103
Top Keyboards:
Unknown - 8103
Top IP Classification:
hosting & proxy - 7371
Unknown - 660
hosting - 54
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/z6D3U676
2025-04-15 RDP #Honeypot IOCs - 8102 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.47 - 5064
156.146.57.181 - 2304
222.100.239.9 - 452
Top ASNs:
AS212238 - 7368
AS4766 - 485
AS48721 - 63
Top Accounts:
hello - 7838
142.93.8.59 - 177
Administr - 27
Top ISPs:
Datacamp Limited - 7368
Korea Telecom - 485
Flyservers S.A. - 63
Top Clients:
Unknown - 8102
Top Software:
Unknown - 8102
Top Keyboards:
Unknown - 8102
Top IP Classification:
hosting & proxy - 7371
Unknown - 659
hosting - 54
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/eBM4Ac2a
2025-04-15 RDP #Honeypot IOCs - 8101 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.47 - 5064
156.146.57.181 - 2304
222.100.239.9 - 451
Top ASNs:
AS212238 - 7368
AS4766 - 484
AS48721 - 63
Top Accounts:
hello - 7837
142.93.8.59 - 177
Administr - 27
Top ISPs:
Datacamp Limited - 7368
Korea Telecom - 484
Flyservers S.A. - 63
Top Clients:
Unknown - 8101
Top Software:
Unknown - 8101
Top Keyboards:
Unknown - 8101
Top IP Classification:
hosting & proxy - 7371
Unknown - 658
hosting - 54
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/FFA19xba
https://www.sunoltech.com/check-point-6700-security-gateway/ Check Point 6700 FIREWALL APPLIANCE FOR E-RATE CPAP-6700-SOC-E-RATE @CheckPointSW #6700f #firewall #security #gateway 3erate #cpap #soce #soc @SunolTech
Streamlining detection engineering in security operation centers – Source: securelist.com https://ciso2ciso.com/streamlining-detection-engineering-in-security-operation-centers-source-securelist-com/ #rssfeedpostgeneratorecho #detectionengineering #CyberSecurityNews #Cybersecurity #securelistcom #TIandIRposts #0CISO2CISO #SIEM #SOC
Șocant! Potrivit unui articol recent, Trump ar vrea să deporteze cetățeni americani în străinătate. 
Ați citit bine! Articolul susține că "cei autohtoni sunt următorii" și că Trump speră să încarcereze cetățeni americani în țări străine. Cum e posibil așa ceva? 
Află mai multe detalii despre această informație explozivă în articol!
#Trump #Deportare #PoliticaAmericana #Soc #CetateniAmericani #Incarcerare
Citește mai mult: https://newsro.us/politics/trump-vrea-sa-deporteze-cetateni-americani-strainatate
New informations about the CVE panic.
CISA extend funding and prevent many criticals risks for organisations.
#CVE #CISA #Trump #Cybersecurity #Cyber #SOC #MittreAttack #Mitre
SOC Alert Fatigue Hits Peak Levels As Teams Battle Notification Overload https://gbhackers.com/soc-alert-fatigue/ #CyberSecurityNews #cybersecurity #CISO #SOC
2025-04-15 RDP #Honeypot IOCs - 8100 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.47 - 5064
156.146.57.181 - 2304
222.100.239.9 - 450
Top ASNs:
AS212238 - 7368
AS4766 - 483
AS48721 - 63
Top Accounts:
hello - 7836
142.93.8.59 - 177
Administr - 27
Top ISPs:
Datacamp Limited - 7368
Korea Telecom - 483
Flyservers S.A. - 63
Top Clients:
Unknown - 8100
Top Software:
Unknown - 8100
Top Keyboards:
Unknown - 8100
Top IP Classification:
hosting & proxy - 7371
Unknown - 657
hosting - 54
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/ZsnpxT0s
2025-04-15 RDP #Honeypot IOCs - 5400 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.47 - 3376
156.146.57.181 - 1536
222.100.239.9 - 300
Top ASNs:
AS212238 - 4912
AS4766 - 322
AS48721 - 42
Top Accounts:
hello - 5224
142.93.8.59 - 118
Administr - 18
Top ISPs:
Datacamp Limited - 4912
Korea Telecom - 322
Flyservers S.A. - 42
Top Clients:
Unknown - 5400
Top Software:
Unknown - 5400
Top Keyboards:
Unknown - 5400
Top IP Classification:
hosting & proxy - 4914
Unknown - 438
hosting - 36
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/8N8ddzKh
2025-04-15 RDP #Honeypot IOCs - 2700 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
156.146.57.47 - 1688
156.146.57.181 - 768
222.100.239.9 - 150
Top ASNs:
AS212238 - 2456
AS4766 - 161
AS48721 - 21
Top Accounts:
hello - 2612
142.93.8.59 - 59
Administr - 9
Top ISPs:
Datacamp Limited - 2456
Korea Telecom - 161
Flyservers S.A. - 21
Top Clients:
Unknown - 2700
Top Software:
Unknown - 2700
Top Keyboards:
Unknown - 2700
Top IP Classification:
hosting & proxy - 2457
Unknown - 219
hosting - 18
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
https://pastebin.com/yTbq0QFF
Plans, Policies, and Procedures: SOC 2
Designed to help organizations demonstrate that they have implemented appropriate controls to protect customer data and systems.
https://blackcatwhitehatsecurity.com
#Plans #Policies #Procedures #SOC
