LetsDefend Monitoring Alert
Web Session Cookie Theft Attempt
Jun, 08, 2023, 02:52 PM
Event ID: 157
Event Time: Jun, 08, 2023, 02:52 PM
Rule Name: SOC206 - Web Session Cookie Theft Attempt
Alert Type: Malware
MITRE Technique:
T1053 - Persistence - Scheduled Task/Job,
T1189 - Initial Access - Drive-by Compromise,
T1571 - Command and Control - Non-Standard Port,
T1539 - Credential Access - Steal Web Session Cookie,
Severity: Medium
Incident Responder