Suspicious traffic from internal to External IP
Hi All,
Recently on my SIEM console. I could observe the web traffic from the internal host machine towards the blacklisted IP over the port 443. Alert was flagged by the PaSeries (Palo alto firewall). Two events I have observed
1) CryptoMiner.Gen M
...