High Alerts
52 alerts
| ID | Timestamp | Alert Type | Severity | Status | Source | Hostname | User | Origin | Analyst | MITRE |
|---|---|---|---|---|---|---|---|---|---|---|
| ALR-00352 | 1h ago | Pass-the-Hash Detected | High | Escalated | Firewall | SRV-APP-01 | m.taylor | US United States | Marcus Webb | T1550.002 |
| ALR-00443 | 1h ago | Unauthorised USB Device | High | Escalated | DLP Module | WS-PC-001 | k.brown | IR Iran | James Okonkwo | T1091 |
| ALR-00342 | 1h ago | Rogue DHCP Server | High | Open | SOC365 Engine | WS-PC-004 | l.johnson | KP North Korea | Sarah Chen | T1557.003 |
| ALR-00406 | 2h ago | Malware Signature Match | High | Escalated | DecoyPulse | WS-PC-004 | p.thomas | NG Nigeria | James Okonkwo | T1204.002 |
| ALR-00279 | 9h ago | Privilege Escalation Attempt | High | Escalated | Attack Surface Scanner | WS-PC-006 | p.thomas | US United States | Sarah Chen | T1134 |
| ALR-00457 | 10h ago | Tor Exit Node Connection | High | Investigating | Endpoint Agent | WS-MAC-005 | n.clark | IN India | James Okonkwo | T1090.003 |
| ALR-00130 | 13h ago | Certificate Anomaly | High | Escalated | Network IDS | WS-LAP-012 | j.smith | NL Netherlands | Sarah Chen | T1553.004 |
| ALR-00315 | 16h ago | Suspicious PowerShell Execution | High | Open | EmilyAI Triage | SRV-APP-01 | c.williams | BR Brazil | Sarah Chen | T1059.001 |
| ALR-00095 | 17h ago | Phishing Email Blocked | High | Escalated | Endpoint Agent | SRV-MAIL-01 | c.williams | BR Brazil | James Okonkwo | T1566.001 |
| ALR-00195 | 20h ago | Suspicious Scheduled Task | High | Investigating | Firewall | SRV-WEB-01 | k.brown | FR France | Sarah Chen | T1053.005 |
| ALR-00046 | 1d ago | Kerberoasting Attempt | High | Open | Network IDS | WS-PC-001 | p.thomas | FR France | Emma Richardson | T1558.003 |
| ALR-00147 | 1d ago | C2 Beacon Activity | High | Investigating | SOC365 Engine | WS-PC-001 | s.jones | NG Nigeria | Sarah Chen | T1071.001 |
| ALR-00486 | 1d ago | Unusual Outbound Traffic | High | Investigating | Network IDS | SRV-FILE-01 | r.davies | NL Netherlands | Sarah Chen | T1041 |
| ALR-00269 | 1d ago | Kerberoasting Attempt | High | Escalated | Dark Web Monitor | WS-PC-003 | n.clark | NL Netherlands | Sarah Chen | T1558.003 |
| ALR-00485 | 1d ago | Suspicious Scheduled Task | High | Investigating | DLP Module | WS-PC-003 | c.williams | IN India | James Okonkwo | T1053.005 |
| ALR-00187 | 1d ago | C2 Beacon Activity | High | Escalated | Endpoint Agent | WS-LAP-012 | d.walker | IN India | Anika Patel | T1071.001 |
| ALR-00393 | 1d ago | Kerberoasting Attempt | High | Escalated | Firewall | WS-PC-003 | a.wilson | NG Nigeria | Anika Patel | T1558.003 |
| ALR-00023 | 1d ago | Lateral Movement Detected | High | Escalated | Network IDS | SW-CORE-01 | r.davies | RO Romania | Sarah Chen | T1021.002 |
| ALR-00117 | 2d ago | Certificate Anomaly | High | Open | EmilyAI Triage | SRV-FILE-01 | system | RO Romania | Emma Richardson | T1553.004 |
| ALR-00239 | 2d ago | Unusual Outbound Traffic | High | Open | Attack Surface Scanner | SRV-FILE-01 | a.wilson | KP North Korea | James Okonkwo | T1041 |
| ALR-00327 | 2d ago | Certificate Anomaly | High | Open | Endpoint Agent | WS-PC-001 | r.davies | IN India | James Okonkwo | T1553.004 |
| ALR-00004 | 2d ago | Anomalous DNS Query | High | Escalated | Dark Web Monitor | VM-DEV-01 | p.thomas | IR Iran | Sarah Chen | T1568.002 |
| ALR-00227 | 2d ago | Credential Stuffing Attempt | High | Escalated | Attack Surface Scanner | AP-WIFI-03 | h.roberts | RU Russia | Sarah Chen | T1110.004 |
| ALR-00355 | 2d ago | Unusual Outbound Traffic | High | Escalated | Endpoint Agent | VM-DEV-01 | m.taylor | NL Netherlands | Anika Patel | T1041 |
| ALR-00370 | 2d ago | Tor Exit Node Connection | High | Escalated | Network IDS | WS-LAP-012 | s.jones | FR France | James Okonkwo | T1090.003 |
| ALR-00385 | 2d ago | Privilege Escalation Attempt | High | Investigating | Cloud Connector | SRV-DC-01 | f.hall | IR Iran | Marcus Webb | T1134 |
| ALR-00099 | 2d ago | Phishing Email Blocked | High | Investigating | Firewall | AP-WIFI-03 | d.walker | GB United Kingdom | Emma Richardson | T1566.001 |
| ALR-00206 | 2d ago | Tor Exit Node Connection | High | Open | EmilyAI Triage | SRV-MAIL-01 | d.walker | IN India | Marcus Webb | T1090.003 |
| ALR-00223 | 2d ago | Certificate Anomaly | High | Investigating | Dark Web Monitor | WS-PC-003 | s.jones | IN India | James Okonkwo | T1553.004 |
| ALR-00451 | 3d ago | Brute Force SSH | High | Investigating | Firewall | WS-PC-006 | d.walker | CN China | Sarah Chen | T1110.001 |
| ALR-00176 | 3d ago | Failed MFA Challenge | High | Investigating | Endpoint Agent | SRV-BACKUP-01 | e.evans | KP North Korea | Anika Patel | T1621 |
| ALR-00052 | 3d ago | Shadow IT Discovery | High | Escalated | Dark Web Monitor | SW-CORE-01 | p.thomas | VN Vietnam | Emma Richardson | T1567 |
| ALR-00425 | 3d ago | Data Exfiltration Attempt | High | Open | SOC365 Engine | SRV-DC-01 | f.hall | NG Nigeria | Anika Patel | T1567.002 |
| ALR-00031 | 3d ago | Port Scan Detected | High | Investigating | EmilyAI Triage | FW-EDGE-01 | e.evans | KP North Korea | Emma Richardson | T1046 |
| ALR-00395 | 4d ago | DLP Policy Violation | High | Escalated | Dark Web Monitor | FW-EDGE-01 | a.wilson | RO Romania | Emma Richardson | T1048 |
| ALR-00309 | 4d ago | DLP Policy Violation | High | Investigating | DLP Module | FW-EDGE-01 | r.davies | FR France | James Okonkwo | T1048 |
| ALR-00026 | 4d ago | Suspicious PowerShell Execution | High | Open | EmilyAI Triage | SRV-WEB-01 | r.davies | IR Iran | Anika Patel | T1059.001 |
| ALR-00238 | 4d ago | Brute Force SSH | High | Investigating | SOC365 Engine | SRV-MAIL-01 | m.taylor | US United States | James Okonkwo | T1110.001 |
| ALR-00105 | 4d ago | DecoyPulse Honeypot Triggered | High | Investigating | Attack Surface Scanner | WS-LAP-010 | system | US United States | James Okonkwo | T1018 |
| ALR-00428 | 4d ago | Phishing Email Blocked | High | Escalated | Dark Web Monitor | VM-DEV-01 | k.brown | FR France | James Okonkwo | T1566.001 |
| ALR-00254 | 4d ago | Certificate Anomaly | High | Open | Dark Web Monitor | SRV-BACKUP-01 | h.roberts | UA Ukraine | James Okonkwo | T1553.004 |
| ALR-00409 | 5d ago | Rogue DHCP Server | High | Escalated | Email Gateway | SRV-DC-01 | e.evans | GB United Kingdom | Sarah Chen | T1557.003 |
| ALR-00293 | 5d ago | Shadow IT Discovery | High | Open | DecoyPulse | SRV-APP-01 | e.evans | CN China | Marcus Webb | T1567 |
| ALR-00491 | 5d ago | Privilege Escalation Attempt | High | Investigating | Endpoint Agent | WS-PC-004 | c.williams | GB United Kingdom | Sarah Chen | T1134 |
| ALR-00111 | 6d ago | C2 Beacon Activity | High | Open | Attack Surface Scanner | SRV-BACKUP-01 | s.jones | NG Nigeria | Marcus Webb | T1071.001 |
| ALR-00224 | 6d ago | Pass-the-Hash Detected | High | Escalated | Attack Surface Scanner | SW-CORE-01 | c.williams | UA Ukraine | Marcus Webb | T1550.002 |
| ALR-00070 | 6d ago | Tor Exit Node Connection | High | Open | Email Gateway | WS-MAC-005 | l.johnson | IN India | James Okonkwo | T1090.003 |
| ALR-00001 | 6d ago | Tor Exit Node Connection | High | Open | EmilyAI Triage | SRV-FILE-01 | c.williams | US United States | Marcus Webb | T1090.003 |
| ALR-00500 | 6d ago | Phishing Email Blocked | High | Investigating | Network IDS | WS-LAP-011 | a.wilson | IN India | Anika Patel | T1566.001 |
| ALR-00302 | 6d ago | Suspicious PowerShell Execution | High | Investigating | EmilyAI Triage | SRV-DC-01 | l.johnson | NL Netherlands | Emma Richardson | T1059.001 |
| ALR-00488 | 6d ago | Lateral Movement Detected | High | Escalated | DecoyPulse | SRV-APP-01 | f.hall | VN Vietnam | Sarah Chen | T1021.002 |
| ALR-00285 | 6d ago | Unauthorised USB Device | High | Investigating | SOC365 Engine | WS-PC-003 | l.johnson | KP North Korea | Emma Richardson | T1091 |