Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
ioc.exchange is one of the many independent Mastodon servers you can use to participate in the fediverse.
INDICATORS OF COMPROMISE (IOC) InfoSec Community within the Fediverse. Newbies, experts, gurus - Everyone is Welcome! Instance is supposed to be fast and secure.

Administered by:

Server stats:

1.4K
active users

ioc.exchange: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.4

Just Another Blue Teamer

New as reported by Symantec is the highlight of the . Shuckworm, aka or , has been targeting Ukraine since 2014.

Link in the comments!

***I am going to leave one of the MITRE ATT&CK blank. I would like to see if any of you that see this can help FILL in that blank! If so, leave your thoughts in the comments OR send me a DM!***

TA0001 - Initial Access
T1566.001 - Phishing: Spearphishing Attachment

TA0002 - Execution
T1059.001 - Command and Scripting Interpreter: PowerShell

TA0003 - Persistence
T1053.005 - Scheduled Task/Job: Scheduled Task

TA0009 - Collection
[Here is your chance to shine! Let the community or me know what you find!]

Threat actors use Telegraph to store C&C addresses (from source)
#CyberSecurity#ITSecurity#InfoSec
Jun 15, 2023, 03:59 PM·Public·Web
0boosts·0favorites
ExploreLive feeds
About