(also IOCs, behavioral patterns)
Indicators of compromise (IOCs) are forensic data components that can detect data breaches and show users that some data compromises may exist on a network or an endpoint. They monitor network traffic, system logs, file hashes, IP addresses, and domain names, where hackers may leave a trace indicating a data breach. IOCs help security experts detect malicious activity on a system or network, such as suspicious data in system log entries or files. They discover malware, data breaches, and other threatening behavior. IOCs can range from basic metadata components to incredibly advanced malicious code and content snippets, making them hard to find. To discover a potential threat or incident, security analysts collect a IOCs and look for correlations among them.
See also: data breach, anti-phishing service
We value your privacy