Unusual Outbound Traffic
Low
Open
ALR-00211 · 2026-07-08T05:35:33Z
Description
Unusual outbound traffic pattern from SRV-FILE-01 to IP in Eastern Europe. 450MB transferred over non-standard port. Flagged by DLP Module.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
05:35:33
Event ingested by SOC365 Engine
05:35:34
EmilyAI triage started — correlation enrichment
05:35:43
EmilyAI confidence: 95% — escalated to human analyst
05:35:48
Alert assigned to analyst: EmilyAI (auto)
05:38:17
Investigation started — querying SIEM and threat intelligence
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00228 | 2h ago | Unusual Outbound Traffic | Low | Resolved | WS-LAP-012 |
| ALR-00279 | 5h ago | Unusual Outbound Traffic | Informational | Resolved | WS-MAC-005 |
| ALR-00395 | 6h ago | Lateral Movement Detected | Medium | Investigating | SRV-FILE-01 |
| ALR-00208 | 13h ago | Data Exfiltration Attempt | Informational | Resolved | SRV-FILE-01 |
| ALR-00123 | 14h ago | Unauthorised USB Device | Low | Resolved | SRV-FILE-01 |