リスクを残さないための メール侵害分析と対応の勘所
Common Information
| Type | Value |
|---|---|
| UUID | 6a390c98-9ae4-4693-b2d2-f2aa967df88c |
| Fingerprint | 7a4af699319d74027b3a3102dc5489d1e7dbe38d933ac500adac7bbe1a9fcf90 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Jan. 23, 2024, 4:31 p.m. |
| Added to db | March 12, 2024, 8:12 p.m. |
| Last updated | Aug. 31, 2024, 5:38 a.m. |
| Headline | リスクを残さないための メール侵害分析と対応の勘所 |
| Title | リスクを残さないための メール侵害分析と対応の勘所 |
| Detected Hints/Tags/Attributes | 40/2/43 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://jsac.jpcert.or.jp/archive/2024/pdf/JSAC2024_1_3_iida_jp.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 7 | docs.apwg.org |
|
| Details | Domain | 13 | w3techs.com |
|
| Details | Domain | 397 | www.microsoft.com |
|
| Details | Domain | 207 | learn.microsoft.com |
|
| Details | Domain | 2 | jpazureid.github.io |
|
| Details | Domain | 4 | compliance.microsoft.com |
|
| Details | Domain | 2 | s000a3.xxxxxx00.prod.outlook.com |
|
| Details | Domain | 831 | example.com |
|
| Details | Domain | 12 | user.read |
|
| Details | Domain | 27 | portal.azure.com |
|
| Details | Domain | 11 | security.microsoft.com |
|
| Details | 17 | user@example.com |
||
| Details | 11 | admin@example.com |
||
| Details | 2 | joker@example.com |
||
| Details | File | 4 | apwg_trends_report_q3_2022.pdf |
|
| Details | File | 173 | outlook.exe |
|
| Details | File | 1 | po_ecogreenland_inc.docx |
|
| Details | File | 1 | requirements.docx |
|
| Details | File | 1 | joker_ual.csv |
|
| Details | IPv4 | 1 | 20.100.101.102 |
|
| Details | IPv4 | 11 | 203.0.113.0 |
|
| Details | IPv6 | 1 | 2a0b:f4c2:1::1 |
|
| Details | Url | 3 | https://docs.apwg.org/reports/apwg_trends_report_q3_2022.pdf |
|
| Details | Url | 1 | https://w3techs.com/technologies/overview/email_server |
|
| Details | Url | 1 | https://www.microsoft.com/en-us/security/blog/2022/07/12/from-cookie-theft-to-bec-attackers-use-aitm-phishing-sites-as- |
|
| Details | Url | 1 | https://www.microsoft.com/en-us/security/security-insider/microsoft-digital-defense-report-2023 |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/authentication/concept-authentication-strengths |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/monitoring-health/reference-reports-data-retention#activity |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/purview/audit-log-retention-policies#default |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/authentication/howto-registration-mfa-sspr-combined#create |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/role-based-access-control/delegate-app-roles#to |
|
| Details | Url | 1 | https://jpazureid.github.io/blog/azure-active-directory/enterpriseapps-multitenantapps |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/office/office-365-management-api/office-365-management-activity-api-schema#auditlogrecordtype |
|
| Details | Url | 1 | https://compliance.microsoft.com |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/purview/audit-new-search#get |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/purview/audit-log-search-script |
|
| Details | Url | 15 | https://portal.azure.com |
|
| Details | Url | 3 | https://security.microsoft.com |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/conditional-access/concept-token-protection |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/conditional-access/howto-conditional-access-session-lifetime#policy |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/id-protection/howto-identity-protection-configure-risk-policies |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/entra/identity/conditional-access/concept-conditional-access-cloud-apps#user |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/mem/intune/enrollment/enrollment-notifications |