sluggard, 11 months ago @jerry @support It might be an overly broad interpretation. Infosec.exchange is in the Emerging Threats "ET Open" ruleset (now owned by Proofpoint) https://rules.emergingthreats.net/OPEN_download_instructions.html infosec.exchange/@ginkgo/109436074199108459; is in emerging-malware.rules in emerging-phishing.rules, there is this: infosec.exchange/@rmceoin/109604157428550003 both show up in sid-msg.map
@jerry @support It might be an overly broad interpretation. Infosec.exchange is in the Emerging Threats "ET Open" ruleset (now owned by Proofpoint) https://rules.emergingthreats.net/OPEN_download_instructions.html
infosec.exchange/@ginkgo/109436074199108459; is in emerging-malware.rules
in emerging-phishing.rules, there is this: infosec.exchange/@rmceoin/109604157428550003
both show up in sid-msg.map