Certificate Anomaly
High
Escalated
ALR-00053 · 2026-07-08T15:31:22Z
Description
TLS certificate anomaly detected on SRV-BACKUP-01. Self-signed certificate on port 443 does not match expected corporate CA chain.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
15:31:22
Event ingested by SOC365 Engine
15:31:23
EmilyAI triage started — correlation enrichment
15:31:35
EmilyAI confidence: 94% — escalated to human analyst
15:31:40
Alert assigned to analyst: Anika Patel
15:32:34
Investigation started — querying SIEM and threat intelligence
15:37:51
Containment action taken — endpoint isolated
15:46:47
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00111 | 2h ago | Certificate Anomaly | Low | Resolved | SRV-BACKUP-01 |
| ALR-00112 | 8h ago | Failed MFA Challenge | Medium | Resolved | SRV-BACKUP-01 |
| ALR-00430 | 10h ago | Certificate Anomaly | Medium | False Positive | WS-PC-004 |
| ALR-00364 | 22h ago | Unauthorised USB Device | Informational | Escalated | SRV-BACKUP-01 |
| ALR-00337 | 1d ago | Ransomware Behaviour Detected | High | Open | SRV-BACKUP-01 |