New: Use response actions to update Zscaler policies and block threats
ATT&CK techniques detected
T1566.002Spearphishing Link
79%
"new : use response actions to update zscaler policies and block threats the intel teams here at red canary and zscaler have seen some notable social engineering attacks recently. bad actors get an employee email address and run a program to plug it into a bunch of legitimate site…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1598Phishing for Information
32%
"new : use response actions to update zscaler policies and block threats the intel teams here at red canary and zscaler have seen some notable social engineering attacks recently. bad actors get an employee email address and run a program to plug it into a bunch of legitimate site…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
A new integration gives teams an easy way to update Zscaler Internet Access (ZIA) network policies using Red Canary response actions.