Data Exfiltration Attempt
High
Open
ALR-00094 · 2026-07-08T04:08:32Z
Description
Large data transfer (2.3GB) to cloud storage from WS-PC-002 by user 'm.taylor'. EmilyAI Triage DLP policy triggered — sensitive documents detected.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
04:08:32
Event ingested by SOC365 Engine
04:08:36
EmilyAI triage started — correlation enrichment
04:08:46
EmilyAI confidence: 81% — escalated to human analyst
04:08:51
Alert assigned to analyst: Emma Richardson
04:10:49
Investigation started — querying SIEM and threat intelligence
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00205 | 1h ago | Data Exfiltration Attempt | Low | Open | WS-PC-003 |
| ALR-00170 | 2h ago | Data Exfiltration Attempt | Medium | Open | WS-LAP-011 |
| ALR-00044 | 7h ago | Malware Signature Match | High | Open | WS-PC-002 |
| ALR-00174 | 1d ago | Tor Exit Node Connection | Medium | Investigating | WS-PC-002 |
| ALR-00337 | 1d ago | Tor Exit Node Connection | Low | False Positive | WS-PC-002 |