cbondeson Posted September 19, 2022 Share Posted September 19, 2022 My companies SECOPS team was notified of a potential Cobalt Strike alert . Cobalt Strike is associated with ransomware and may be a indicator of compromise. VPN and network accounts for user have been disabled until further investigation is possible. I disabled Kamo and this alert was removed. Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now