Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
zsszlama
Contributor
Jump to solution

Malicious traffic analysis

We are experiencing an interesting phenomenon at our client

In several cases, we find that suspicious traffic leaves their internal server.

Unfortunately it is not clear whether this is a response traffic that is only an event displayed by smartlog or a real malicious traffic.

Please see the attached screenshots – sensitive data was masked.

Have you ever encountered something similar? Are we really dealing with malicious traffic?

screen1-b.png

 

screen3-b.png

 

screen4-b.png

 

0 Kudos
1 Reply
This widget could not be displayed.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events