<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>intrusion detection &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/intrusion-detection/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Thu, 30 May 2024 13:00:38 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>Disrupting FlyingYeti&#8217;s campaign targeting Ukraine</title>
		<link>https://noise.getoto.net/2024/05/30/disrupting-flyingyetis-campaign-targeting-ukraine/</link>
		
		<dc:creator><![CDATA[Cloudforce One]]></dc:creator>
		<pubDate>Thu, 30 May 2024 13:00:38 +0000</pubDate>
				<category><![CDATA[Cloud Email Security]]></category>
		<category><![CDATA[Cloudflare Workers]]></category>
		<category><![CDATA[Cloudforce One]]></category>
		<category><![CDATA[CVE]]></category>
		<category><![CDATA[exploit]]></category>
		<category><![CDATA[Github]]></category>
		<category><![CDATA[intrusion detection]]></category>
		<category><![CDATA[Malware]]></category>
		<category><![CDATA[microsoft]]></category>
		<category><![CDATA[Phishing]]></category>
		<category><![CDATA[Remote Browser Isolation]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[serverless]]></category>
		<category><![CDATA[Threat Data]]></category>
		<category><![CDATA[Threat Intelligence]]></category>
		<category><![CDATA[Threat Operations]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=79c1ef7666398be5b92021110206519b</guid>

					<description><![CDATA[In April and May 2024, Cloudforce One employed proactive defense measures to successfully prevent Russia-aligned threat actor FlyingYeti from launching their latest phishing campaign targeting Ukraine]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>SolarWinds Detected Six Months Earlier</title>
		<link>https://noise.getoto.net/2023/05/03/solarwinds-detected-six-months-earlier/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 03 May 2023 10:13:58 +0000</pubDate>
				<category><![CDATA[breaches]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[intrusion detection]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=67299</guid>

					<description><![CDATA[<p><a href="https://www.wired.com/story/solarwinds-hack-public-disclosure/">New reporting</a> from Wired reveals that the Department of Justice detected the SolarWinds attack six months before Mandiant detected it in December 2020, but didn’t realize what it detected—and so ignored it.</p>
<blockquote><p>WIRED can now confirm that the operation was actually discovered by the DOJ six months earlier, in late May 2020­—but the scale and significance of the breach wasn’t immediately apparent. Suspicions were triggered when the department detected unusual traffic emanating from one of its servers that was running a trial version of the Orion software suite made by SolarWinds, according to sources familiar with the incident. The software, used by system administrators to manage and configure networks, was communicating externally with an unfamiliar system on the internet. The DOJ asked the security firm Mandiant to help determine whether the server had been hacked. It also engaged Microsoft, though it’s not clear why the software maker was also brought onto the investigation...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Next generation intrusion detection: an update on Cloudflare’s IDS capabilities</title>
		<link>https://noise.getoto.net/2022/06/21/next-generation-intrusion-detection-an-update-on-cloudflares-ids-capabilities/</link>
		
		<dc:creator><![CDATA[Annika Garbers]]></dc:creator>
		<pubDate>Tue, 21 Jun 2022 13:12:47 +0000</pubDate>
				<category><![CDATA[Cloudflare One Week]]></category>
		<category><![CDATA[intrusion detection]]></category>
		<category><![CDATA[Zero-Trust]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=0cc2e2dae6268069b584cbd04b5c04de</guid>

					<description><![CDATA[Cloudflare’s IDS capabilities operate across all of your network traffic - any IP port or protocol — whether it flows to your IPs that we advertise on your behalf, IPs we lease to you, or soon, traffic within your private network.]]></description>
		
		
		<enclosure url="http://blog.cloudflare.com/content/images/2022/06/image1-20.png" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 37/113 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-08 03:48:03 by W3 Total Cache
-->