outbound_telnet_traffic
Explanation
The outbound_telnet_traffic event detects outbound cleartext telnet traffic. The use of non-encrypted protocols such as telnet should be discouraged due to the inherent security risks. This event is triggered when the Netography Fusion Portal sees outbound telnet traffic.
What to Look For
To detect outbound_telnet_traffic, look for cleartext telnet traffic leaving your network. This can be analyzed on the network using packet captures or flow data. On the endpoint, look for telnet clients or processes that may be generating the traffic. It is important to remediate any instances of non-encrypted telnet traffic in order to improve the security of your network.
Updated 20 days ago