A network engineer noticed in the NetFlow report that internal hosts are sending many DNS requests to external DNS servers A SOC analyst checked the endpoints and discovered that they are infected and became part of the botnet Endpoints are sending multiple DNS requests but with spoofed IP addresses of valid external sources What kind of attack are infected endpoints involved in1?
Lauryn
7 months agoLuis
7 months agoLashawn
7 months agoGary
7 months agoJerilyn
7 months agoFrancine
7 months ago