Credential Stuffing Attempt
Low
Resolved
ALR-00205 · 2026-07-09T23:02:26Z
Description
Credential stuffing attack detected against VPN gateway. 234 unique username/password combinations attempted. Flagged by EmilyAI Triage.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
23:02:26
Event ingested by SOC365 Engine
23:02:29
EmilyAI triage started — correlation enrichment
23:02:35
EmilyAI confidence: 93% — escalated to human analyst
23:02:58
Alert assigned to analyst: EmilyAI (auto)
23:04:04
Investigation started — querying SIEM and threat intelligence
23:05:41
Containment action taken — endpoint isolated
23:14:33
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00297 | 3h ago | Shadow IT Discovery | Low | Investigating | WS-PC-001 |
| ALR-00250 | 4h ago | Credential Stuffing Attempt | Low | Open | WS-MAC-005 |
| ALR-00269 | 8h ago | Credential Stuffing Attempt | Medium | Escalated | SRV-APP-01 |
| ALR-00419 | 14h ago | Credential Stuffing Attempt | Informational | Open | WS-PC-006 |
| ALR-00346 | 17h ago | Credential Stuffing Attempt | Informational | Escalated | SRV-SQL-01 |