Y
Hacker News
new
|
ask
|
show
|
jobs
by
drb91
2604 days ago
Assuming the exfiltration can be differentiated from normal behavior!
1 comments
auiya
2603 days ago
Seeing large amounts of encrypted traffic leaving via a DNS tunnel during non-standard business hours for instance would be an example of such an anomaly. It's not always that easy to detect however.
link