Select a question:
What is the Threat Level for this Incident?
What ransomware group is responsible for the incident?
What is the Event ID for the "Related Event" associated with the attribute "185.59.221.75"?
Select a question:
What is the first "level" value for IP 185.59.221.75?
What namespace appears in the first taxonomy entry?
How many scanners flagged this IP as malicious?
Select a question:
What domain observable is tagged as suspicious?
How many case tasks are available for the Incident??
Which case task involves your team preventing the ransomware from spreading all over your organisation?