Bob MalinCase #1999 — PP_serviciicladiri.ro_bmalin_C16Executive Summary (Incident Write-up): On 2024/07/15–19:02 (UTC -04:00) an email came in and proofpoint observed and classified it as…21h ago21h ago
Bob MalinCase #1843 — PP_Suspected Russian DDOS_63719_bmalin_C16Executive Summary (Incident Write-up): On Jul 9, 2024, 2:17:25 AM a detection on User Geography and Network Threshold Policy Violation and…4d ago4d ago
Bob MalinCase #1840 — QR_63749_Suspicious Email_bmalin_C16Executive Summary (Incident Write-up): On Jul 9, 2024, 7:34:02 AM Email Security: Suspicious Email Detected containing Messages Delivered…4d ago4d ago
Bob MalinCase #1796 — PP_MISPADU_TA2725_bmalin_C16Executive Summary (Incident Write-up): On 2024/06/26–16:31 (UTC -04:00) one of two messages was sent to kathyy@totalsem.com that was…6d ago6d ago
Bob MalinSOC Case #122823 — Loki Malware File — bmalin — C16Description: OSINT suggests that newkeyboard.exe/FGbG.exe is flagged for RW binary associated to the Loki Malware family. CS quarantined…Jul 9Jul 9
Bob MalinSOC Case #52124 — Pobox Email Cred Grab — bmalin — C16First Message. Executive Summary (Incident Write-up): On 2024/05/20–21:42 (UTC -04:00) email sent from admin@web.com to total@totalsem.com…Jul 9Jul 9
Bob MalinCase #122723 — Traybox.exe — Sentinel One — bmalin — C16On Dec 9th 2023 at 12:10:02 a SentinelOne alert Initiated By Agent Policy Engine on SentinelOne Cloud with a Dynamic Detection type and a…Jul 9Jul 9
Bob MalinCase # 1757 — Splunk-PP-Biden Leak Malware-bmalin-C16Executive Summary (Incident Write-up): On 2024/07/08–17:31 (UTC -04:00), Proofpoint Email Threat Alert System alerted to potential malware…Jul 9Jul 9
Bob MalinQRadar 34729 External Threats — Automated Scan Tools DetectedDescription: On Jan 11, 2024, 4:41:59 PM External Threats — Automated Scan Tools Detected. Offense 34729. Web Reconnaissance, Potential…Jul 8Jul 8
Bob MalinCase # 1750 — Splunk — Threat Activity Detected — bmalin — C16Executive Summary (Incident Write-up): On July 7, 2024 at 2:10AM, threat activity (79.110.49.155) was discovered in the “src” field based…Jul 7Jul 7