Threat intel has value in some cases but we propose that some famous attacks, Solarwinds for example, could have been detected using the following technique.

Peekaboo we see GRU

Software Engineer at Microsoft with an unhealthy INFOSEC and Windows threat hunting obsession.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store