Black Hills InfoSec

Geopolitical Cyber-Detection Lures for Attribution with Microsoft Sentinel

Kassie Kimball · 2022-05-17 · Read original ↗

ATT&CK techniques detected

2 predictions

T1486Data Encrypted for Impact

92%

"your ir processes and are not flying under radar screens, but … most businesses have never seen anything like this type of log analysis — and that means most of us are blind to this kind of attack. we are up against legitimate and terrifyingly persistent adversaries. we keep read…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1078Valid Accounts

36%

"events. run this query and behold the magnificence of identifying some of the internet ’ s most dangerous and uncaring adversaries. these folks script attacks, smash down doors, compromise systems, take over accounts, and rightfully escalate their compromises to their own version…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

Summary

<img alt="" class="attachment-full size-full wp-post-image" height="720" src="https://www.blackhillsinfosec.com/wp-content/uploads/2022/05/thumbnail_BLOG_chalkboard_00592.jpg" width="1280" /> Jordan Drysdale // Summary! There are tons of security event management (SIEM) solutions available these days, but this blog will focus on Microsoft Sentinel. Sentinel is easy to deploy, logs […] The post <a href="https://www.blackhillsinfosec.com/geopolitical-cyber-detection-lures-for-attribution-with-microsoft-sentinel/">Geopolitical Cyber-Detection Lures for Attribution with Microsoft Sentinel </a> appeared first on <a href="https://www.blackhillsinfosec.com">Black Hills Information Security, Inc.</a>.