Glossary
Indicator of compromise (IOC)
A technical clue that betrays a possible attack: a known malicious address, file or domain.
An indicator of compromise (IOC) is a trace that suggests a system may have been attacked: an address or domain contacted, the fingerprint of a malicious file, abnormal network behaviour. Shared among professionals, these clues feed detection tools. They are useful but limited, because an attacker can easily change them.
See also
MITRE ATT&CKA reference catalogue that describes the methods actually used by cyberattackers.HoneypotA deliberately exposed decoy to attract attackers and spot their actions.PasskeyA modern alternative to the password: you log in by unlocking your device, with nothing to remember or type.SPF, DKIM and DMARCThree technical settings that prove an email really comes from the right domain, to fight against spoofing.