10-10-2017 06:18 AM
So we get an alert today for ChinaCopper.Gen C&C inbound traffic. In doing research to see what this is, we look at the Threat DB, only to find the description of ChinaCopper.Gen to be: "This signature detects ChinaCopper.Gen Command and Control Traffic. " No other information, and no matter how I search the Internet I only get information on metal copper coming out of China.
Am I missing anything on where to search for what these are? And is anyone else frustrated at the lack of info in the ThreatDB?