You are working as a Security Analyst in a company XYZ that owns the whole subnet range of 23.0.0.0/8 and 192.168.0.0/8.
While monitoring the data, you find a high number of outbound connections. You see that IP's owned by XYZ (Internal) and private IP's are communicating to a
Single Public IP. Therefore, the Internal IP's are sending data to the Public IP.
After further analysis, you find out that this Public IP is a blacklisted IP, and the internal communicating devices are compromised.
What kind of attack does the above scenario depict?
ripple
Highly Voted 2 years, 10 months agoScryptic
Highly Voted 2 years, 7 months agoMGRavindra
Most Recent 1 year, 1 month agomefis
1 year, 2 months agoC4yber
1 year, 6 months agoUrltenm
2 years, 2 months agoNovmejst
2 years, 4 months agoNovmejst
2 years, 4 months agoBigMomma4752
2 years, 6 months agoduprst
2 years, 6 months agoOsen
2 years, 5 months agoHackerl
2 years, 4 months agoKruHacker01
2 years, 2 months agoSilascarter
2 years, 5 months agoAjaxFar
2 years, 4 months agouglyoldgoat
2 years, 7 months agobrdweek
2 years, 6 months ago