New Rules Deployed
Windows/Network Connection: Suspicious Epmap ConnectionSuspicious Dropbox API UsageSuspicious Outbound Kerberos ConnectionSuspicious Program Location with Network Connections Windows/System or Application/Service Control Manager: Tap Driver InstallationInvoke-Obfuscation COMPRESS OBFUSCATION – SystemInvoke-Obfuscation RUNDLL LAUNCHER – SystemInvoke-Obfuscation Via Stdin – SystemInvoke-Obfuscation Via Use Clip – SystemInvoke-Obfuscation Via Use MSHTA – SystemInvoke-Obfuscation Via Use Rundll32 – SystemInvoke-Obfuscation VAR++ LAUNCHER OBFUSCATION – […]
The Subtle Threat of Usernames with a Trailing Space
In the meticulous arena of cybersecurity, the devil is often in the details. A single character, or even the absence of one, can sometimes be the chink in your armor that adversaries seek. Among such deceptively simple techniques is the creation of a username with a space at the end. A tactic that might seem […]
