Certificate Anomaly
Informational
Open
ALR-00169 · 2026-05-23T05:47:21Z
Description
TLS certificate anomaly detected on AP-WIFI-03. Self-signed certificate on port 443 does not match expected corporate CA chain.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
05:47:21
Event ingested by SOC365 Engine
05:47:24
EmilyAI triage started — correlation enrichment
05:47:36
EmilyAI confidence: 98% — escalated to human analyst
05:48:05
Alert assigned to analyst: EmilyAI (auto)
05:49:44
Investigation started — querying SIEM and threat intelligence
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00296 | 3h ago | Certificate Anomaly | Low | False Positive | FW-EDGE-01 |
| ALR-00174 | 14h ago | Certificate Anomaly | Informational | False Positive | SRV-WEB-01 |
| ALR-00132 | 15h ago | Certificate Anomaly | Low | False Positive | WS-LAP-011 |
| ALR-00449 | 1d ago | Certificate Anomaly | Medium | Escalated | SRV-DC-01 |
| ALR-00023 | 1d ago | DecoyPulse Honeypot Triggered | High | Escalated | AP-WIFI-03 |