High Alerts
55 alerts
| ID | Timestamp | Alert Type | Severity | Status | Source | Hostname | User | Origin | Analyst | MITRE |
|---|---|---|---|---|---|---|---|---|---|---|
| ALR-00351 | 1h ago | Pass-the-Hash Detected | High | Investigating | Attack Surface Scanner | WS-PC-006 | c.williams | FR France | Anika Patel | T1550.002 |
| ALR-00129 | 4h ago | Failed MFA Challenge | High | Escalated | Network IDS | WS-MAC-005 | h.roberts | KP North Korea | Marcus Webb | T1621 |
| ALR-00420 | 5h ago | Suspicious Scheduled Task | High | Investigating | SOC365 Engine | AP-WIFI-03 | l.johnson | FR France | James Okonkwo | T1053.005 |
| ALR-00037 | 14h ago | Shadow IT Discovery | High | Open | SOC365 Engine | SRV-APP-01 | m.taylor | UA Ukraine | Emma Richardson | T1567 |
| ALR-00114 | 18h ago | Shadow IT Discovery | High | Investigating | Cloud Connector | WS-PC-006 | r.davies | VN Vietnam | Emma Richardson | T1567 |
| ALR-00025 | 19h ago | Privilege Escalation Attempt | High | Escalated | DecoyPulse | WS-PC-006 | h.roberts | RO Romania | Emma Richardson | T1134 |
| ALR-00159 | 21h ago | DLP Policy Violation | High | Open | DLP Module | SRV-WEB-01 | s.jones | CN China | Marcus Webb | T1048 |
| ALR-00013 | 21h ago | Failed MFA Challenge | High | Escalated | DecoyPulse | WS-PC-004 | l.johnson | VN Vietnam | Emma Richardson | T1621 |
| ALR-00023 | 1d ago | Unusual Outbound Traffic | High | Investigating | Email Gateway | WS-PC-003 | l.johnson | RO Romania | Sarah Chen | T1041 |
| ALR-00067 | 1d ago | Port Scan Detected | High | Investigating | Dark Web Monitor | WS-PC-003 | k.brown | RO Romania | Sarah Chen | T1046 |
| ALR-00057 | 1d ago | DecoyPulse Honeypot Triggered | High | Investigating | Firewall | WS-PC-003 | e.evans | KP North Korea | Marcus Webb | T1018 |
| ALR-00252 | 2d ago | Suspicious PowerShell Execution | High | Escalated | DLP Module | WS-MAC-005 | k.brown | IR Iran | Sarah Chen | T1059.001 |
| ALR-00124 | 2d ago | Lateral Movement Detected | High | Investigating | Network IDS | VM-DEV-01 | a.wilson | GB United Kingdom | Anika Patel | T1021.002 |
| ALR-00459 | 2d ago | DecoyPulse Honeypot Triggered | High | Investigating | Email Gateway | SRV-FILE-01 | l.johnson | UA Ukraine | James Okonkwo | T1018 |
| ALR-00130 | 2d ago | Malware Signature Match | High | Investigating | DecoyPulse | WS-LAP-010 | d.walker | UA Ukraine | Marcus Webb | T1204.002 |
| ALR-00015 | 2d ago | Phishing Email Blocked | High | Escalated | Firewall | SW-CORE-01 | s.jones | NL Netherlands | Sarah Chen | T1566.001 |
| ALR-00294 | 2d ago | Malware Signature Match | High | Escalated | DLP Module | WS-PC-003 | e.evans | NG Nigeria | James Okonkwo | T1204.002 |
| ALR-00206 | 3d ago | Tor Exit Node Connection | High | Escalated | Cloud Connector | WS-PC-003 | k.brown | RU Russia | James Okonkwo | T1090.003 |
| ALR-00201 | 3d ago | Insider Threat Indicator | High | Escalated | EmilyAI Triage | WS-MAC-005 | l.johnson | FR France | Marcus Webb | T1119 |
| ALR-00468 | 3d ago | Failed MFA Challenge | High | Escalated | DLP Module | AP-WIFI-03 | r.davies | NG Nigeria | Anika Patel | T1621 |
| ALR-00321 | 3d ago | Brute Force SSH | High | Escalated | DecoyPulse | SRV-APP-01 | d.walker | GB United Kingdom | Emma Richardson | T1110.001 |
| ALR-00365 | 3d ago | DecoyPulse Honeypot Triggered | High | Open | DLP Module | WS-LAP-011 | f.hall | US United States | James Okonkwo | T1018 |
| ALR-00250 | 3d ago | Kerberoasting Attempt | High | Investigating | Attack Surface Scanner | SW-CORE-01 | e.evans | GB United Kingdom | James Okonkwo | T1558.003 |
| ALR-00232 | 3d ago | Tor Exit Node Connection | High | Escalated | Email Gateway | SW-CORE-01 | s.jones | DE Germany | James Okonkwo | T1090.003 |
| ALR-00140 | 3d ago | Anomalous DNS Query | High | Open | SOC365 Engine | SRV-FILE-01 | d.walker | UA Ukraine | Marcus Webb | T1568.002 |
| ALR-00199 | 3d ago | Shadow IT Discovery | High | Investigating | Cloud Connector | WS-PC-003 | a.wilson | NG Nigeria | Sarah Chen | T1567 |
| ALR-00315 | 3d ago | C2 Beacon Activity | High | Investigating | DLP Module | AP-WIFI-03 | j.smith | US United States | Sarah Chen | T1071.001 |
| ALR-00019 | 4d ago | Credential Stuffing Attempt | High | Open | Endpoint Agent | SRV-MAIL-01 | h.roberts | NL Netherlands | Marcus Webb | T1110.004 |
| ALR-00407 | 4d ago | C2 Beacon Activity | High | Escalated | Attack Surface Scanner | SRV-DC-01 | d.walker | US United States | Emma Richardson | T1071.001 |
| ALR-00444 | 4d ago | Insider Threat Indicator | High | Investigating | Email Gateway | WS-MAC-005 | c.williams | VN Vietnam | Sarah Chen | T1119 |
| ALR-00473 | 4d ago | Insider Threat Indicator | High | Escalated | SOC365 Engine | SRV-BACKUP-01 | n.clark | RU Russia | Anika Patel | T1119 |
| ALR-00254 | 4d ago | Privilege Escalation Attempt | High | Open | Network IDS | WS-PC-002 | s.jones | US United States | James Okonkwo | T1134 |
| ALR-00123 | 4d ago | Insider Threat Indicator | High | Open | EmilyAI Triage | SRV-MAIL-01 | m.taylor | UA Ukraine | Sarah Chen | T1119 |
| ALR-00381 | 4d ago | Privilege Escalation Attempt | High | Escalated | SOC365 Engine | SW-CORE-01 | m.taylor | VN Vietnam | James Okonkwo | T1134 |
| ALR-00419 | 5d ago | Malware Signature Match | High | Open | Attack Surface Scanner | SRV-WEB-01 | a.wilson | GB United Kingdom | Sarah Chen | T1204.002 |
| ALR-00082 | 5d ago | Malware Signature Match | High | Open | DLP Module | SRV-BACKUP-01 | n.clark | NG Nigeria | Anika Patel | T1204.002 |
| ALR-00174 | 5d ago | Port Scan Detected | High | Escalated | Cloud Connector | SRV-MAIL-01 | p.thomas | DE Germany | James Okonkwo | T1046 |
| ALR-00143 | 5d ago | DLP Policy Violation | High | Investigating | Firewall | FW-EDGE-01 | l.johnson | DE Germany | James Okonkwo | T1048 |
| ALR-00086 | 5d ago | Phishing Email Blocked | High | Investigating | Attack Surface Scanner | SW-CORE-01 | k.brown | US United States | Anika Patel | T1566.001 |
| ALR-00177 | 5d ago | DecoyPulse Honeypot Triggered | High | Investigating | SOC365 Engine | WS-LAP-011 | d.walker | CN China | James Okonkwo | T1018 |
| ALR-00003 | 5d ago | Unauthorised USB Device | High | Escalated | Attack Surface Scanner | SRV-BACKUP-01 | m.taylor | NL Netherlands | Emma Richardson | T1091 |
| ALR-00358 | 5d ago | Credential Stuffing Attempt | High | Open | Attack Surface Scanner | WS-MAC-005 | k.brown | US United States | James Okonkwo | T1110.004 |
| ALR-00022 | 5d ago | Suspicious Scheduled Task | High | Escalated | DecoyPulse | SRV-APP-01 | h.roberts | RO Romania | Marcus Webb | T1053.005 |
| ALR-00389 | 5d ago | Unusual Outbound Traffic | High | Open | Attack Surface Scanner | WS-MAC-005 | n.clark | DE Germany | Emma Richardson | T1041 |
| ALR-00054 | 6d ago | Failed MFA Challenge | High | Open | DLP Module | FW-EDGE-01 | h.roberts | NL Netherlands | Anika Patel | T1621 |
| ALR-00149 | 6d ago | Pass-the-Hash Detected | High | Escalated | Endpoint Agent | SRV-DC-01 | k.brown | CN China | James Okonkwo | T1550.002 |
| ALR-00433 | 6d ago | Unauthorised USB Device | High | Escalated | DecoyPulse | WS-MAC-005 | r.davies | GB United Kingdom | Marcus Webb | T1091 |
| ALR-00359 | 6d ago | Kerberoasting Attempt | High | Escalated | Dark Web Monitor | SW-CORE-01 | n.clark | KP North Korea | Emma Richardson | T1558.003 |
| ALR-00214 | 6d ago | Shadow IT Discovery | High | Escalated | Network IDS | SRV-MAIL-01 | h.roberts | NL Netherlands | Anika Patel | T1567 |
| ALR-00471 | 6d ago | Lateral Movement Detected | High | Open | SOC365 Engine | SRV-FILE-01 | h.roberts | UA Ukraine | James Okonkwo | T1021.002 |
| ALR-00449 | 6d ago | Ransomware Behaviour Detected | High | Escalated | EmilyAI Triage | WS-PC-002 | s.jones | NL Netherlands | James Okonkwo | T1486 |
| ALR-00360 | 6d ago | Data Exfiltration Attempt | High | Investigating | EmilyAI Triage | SRV-SQL-01 | e.evans | CN China | Marcus Webb | T1567.002 |
| ALR-00451 | 6d ago | Data Exfiltration Attempt | High | Open | EmilyAI Triage | SRV-SQL-01 | j.smith | US United States | Anika Patel | T1567.002 |
| ALR-00427 | 6d ago | Malware Signature Match | High | Open | Attack Surface Scanner | SRV-MAIL-01 | d.walker | GB United Kingdom | Marcus Webb | T1204.002 |
| ALR-00119 | 6d ago | Insider Threat Indicator | High | Open | Cloud Connector | WS-PC-006 | c.williams | NL Netherlands | James Okonkwo | T1119 |