Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
Detects critical alerts from CYFIRMA related to sensitive data or credentials leaked on dark web forums. These events often indicate unauthorized access or compromise of enterprise systems, cloud environments, or identity platforms. Immediate investigation is required to assess breach scope and initiate mitigation, including credential resets, access reviews, and threat actor tracking.
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | Cyfirma Digital Risk |
| ID | c0afeda7-4832-49a6-8d03-a5d137d513b5 |
| Severity | Medium |
| Status | Available |
| Kind | Scheduled |
| Tactics | CredentialAccess, Collection, Exfiltration, Impact |
| Techniques | T1552.001, T1555.003, T1212, T1119, T1048, T1486 |
| Required Connectors | CyfirmaDigitalRiskAlertsConnector |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
CyfirmaDBWMDarkWebAlerts_CL |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊