Traffic to an unknown young domain
Description
AlphaSOC detected network traffic to a domain that was registered less than 60 days ago and is not well-known. Newly registered domains are often used by threat actors for malicious purposes, such as phishing, malware distribution, or command and control (C2) servers.
Impact
Communication with newly registered, unknown domains can indicate potential compromise of systems within the network. These domains may serve as C2 servers, allowing attackers to maintain persistence or exfiltrate data. This activity could lead to data breaches or system manipulation.
Severity
Severity | Condition |
---|---|
Informational | Traffic to a young domain |