Credential Stuffing Attempt
High
Escalated
ALR-00347 · 2026-07-08T09:34:54Z
Description
Credential stuffing attack detected against VPN gateway. 234 unique username/password combinations attempted. Flagged by EmilyAI Triage.
Alert Metadata
Endpoint Information
MITRE ATT&CK Mapping
Investigation Timeline
09:34:54
Event ingested by SOC365 Engine
09:34:55
EmilyAI triage started — correlation enrichment
09:35:07
EmilyAI confidence: 89% — escalated to human analyst
09:35:16
Alert assigned to analyst: Emma Richardson
09:37:00
Investigation started — querying SIEM and threat intelligence
09:43:29
Containment action taken — endpoint isolated
09:53:45
Alert resolved — remediation complete
Related Alerts
| ID | Time | Alert | Severity | Status | Host |
|---|---|---|---|---|---|
| ALR-00162 | 19m ago | Lateral Movement Detected | Informational | Open | WS-PC-006 |
| ALR-00005 | 4h ago | DecoyPulse Honeypot Triggered | High | Open | WS-PC-006 |
| ALR-00413 | 20h ago | Credential Stuffing Attempt | Medium | Escalated | AP-WIFI-03 |
| ALR-00126 | 21h ago | C2 Beacon Activity | Low | Investigating | WS-PC-006 |
| ALR-00169 | 1d ago | Credential Stuffing Attempt | High | Investigating | VM-DEV-01 |