An engineer discovered a breach, identified the threat's entry point, and removed access. The engineer was able to identify the host, the IP address of the threat actor, and the application the threat actor targeted. What is the next step the engineer should take according to the NIST SP 800-61 Incident handling guide?
Vetterous
Highly Voted 2 years, 12 months agotsabee
2 years, 8 months agoJayPEI
2 years, 1 month agosheyshey
Most Recent 7 months, 1 week agoFaio
10 months, 1 week agoFaio
9 months, 3 weeks agoslippery31
1 year, 1 month agoalhamry
1 year, 2 months agoMaliDong
1 year, 8 months agoEng_ahmedyoussef
1 year, 9 months agostudyelprof
1 year, 9 months agoEntivo
1 year, 11 months agoanonymous1966
1 year, 12 months agoadodoccletus
2 years agoDLukynskyy
2 years, 3 months agoFranky4
2 years, 6 months agoJaboori
2 years, 7 months agoJaboori
2 years, 7 months agohalamah
2 years, 7 months agoshibli_zahir
2 years, 7 months agoanonymous1966
2 years, 10 months agofejec
2 years, 10 months ago