Indicator of Compromise (IoC)

An Indicator of Compromise (IoC) is a piece of evidence that suggests a computer system or network has been affected by malicious activity, such as a cyberattack or malware infection. IoCs can include unusual file changes, IP addresses, domain names, or patterns of behavior that deviate from normal operations. Identifying IoCs helps cybersecurity teams detect and respond to threats early, preventing further damage. In essence, IoCs are clues or signals that indicate a security breach has occurred or might be happening.