Recon InfoSec

Detecting Fake CAPTCHA Campaigns: ClickFix, ClearFake, and Etherhide

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Luke Rusten

Our team recently observed a significant uptick in malware campaigns leveraging fake CAPTCHA pages...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

In July, Eric & Whitney gave a talk titled "Breaches Be Crazy" at the SANS DFIR Summit outlining...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

We can't start a recap post without a huge THANK YOU to the community for joining us last week and...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Now that we've normalized and enriched our events, let's get into the actual threat detection logic...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

In my previous post, I explained the fundamental purpose and use cases of pipelines in Graylog –...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

If you are here hoping to learn more about using Graylog for the purpose of monitoring the security...