Indicators Of Compromise (IoC)

Question 1

What is IoC?

Answer 1

Indicators Of Compromise

Data pieces that detect potential malicious activity on a network or system

Question 2

What is Account Lockout?

Answer 2

Example of IoC

Signals a compromise when its triggered by numerous failed log in attempts

Question 3

What is Concurrent Session Usage?

Answer 3

Example of IoC

One user having multiple active sessions

Question 4

What is Blocked Content?

Answer 4

Example of IoC

When a user attempts to access or download content that has been blocked by security protocol.

Question 5

What is Impossible Travel?

Answer 5

Example of IoC

When suspicious logins occur from distant locations in a timeframe that doesnt make physical sense

Question 6

What is Resource Consumption?

Answer 6

Example of IoC

Unusual resource spikes can signal a compromise

Question 7

What is Resource Inaccessibility?

Answer 7

Example of IoC

The inability to access certain resources such as files, databases, or network services.

Question 8

What is Out-of-Cycle Loggin?

Answer 8

Example of IoC

log entries that occur at unusual times when no one is supposed to be active

Question 9

What are Missing Logs?

Answer 9

Example of IoC

Attackers delete logs to cover their tracks and hinder investigations

Question 10

What are Articles or Documents on Security Breach?

Answer 10

Example of IoC

Attackers may publicly announce their hacks to brag about their abilities or harm the organizations