ExtraHop Logo
Try ExtraHop
Menu iconX icon
  • Platformchevron right
  • Solutionschevron right
  • Modern NDRchevron right
  • Resourceschevron right
  • Companychevron right
User iconSign In
Contact Us

DETECTION OVERVIEW

HTTP Request to a Suspicious Domain

Risk Factors

Attackers frequently establish websites that are designed to distribute malware or collect information from victims. The hostnames of known malicious websites can be included in threat intelligence, which is a collection of information curated by the security community. Network clients that communicate with a suspicious host should be investigated. These clients might be vulnerable to man-in-the-middle, phishing, or pharming attacks, which could result in the exposure of information.

Kill Chain

Caution

Risk Score

60

Detection diagram
Next in Caution: HTTP Request to a Suspicious URI

Attack Background

N/A

Mitigation Options

Block inbound and outbound traffic from suspicious hosts at the network perimeter

MITRE ATT&CK ID

What else can RevealX do for you?

View our Periodic Table of use casesArrow pointing right