High Alerts
40 alerts
| ID | Timestamp | Alert Type | Severity | Status | Source | Hostname | User | Origin | Analyst | MITRE |
|---|---|---|---|---|---|---|---|---|---|---|
| ALR-00186 | 3h ago | Kerberoasting Attempt | High | Investigating | DecoyPulse | SRV-APP-01 | l.johnson | NG Nigeria | Emma Richardson | T1558.003 |
| ALR-00286 | 1d ago | C2 Beacon Activity | High | Investigating | EmilyAI Triage | SRV-BACKUP-01 | s.jones | GB United Kingdom | Sarah Chen | T1071.001 |
| ALR-00376 | 1d ago | Malware Signature Match | High | Open | Attack Surface Scanner | WS-PC-004 | a.wilson | RO Romania | James Okonkwo | T1204.002 |
| ALR-00226 | 1d ago | Rogue DHCP Server | High | Investigating | Endpoint Agent | SRV-WEB-01 | p.thomas | IR Iran | Anika Patel | T1557.003 |
| ALR-00355 | 1d ago | Data Exfiltration Attempt | High | Open | EmilyAI Triage | WS-LAP-012 | r.davies | GB United Kingdom | Anika Patel | T1567.002 |
| ALR-00091 | 2d ago | Port Scan Detected | High | Escalated | DLP Module | WS-LAP-010 | e.evans | GB United Kingdom | Sarah Chen | T1046 |
| ALR-00113 | 2d ago | Kerberoasting Attempt | High | Escalated | DecoyPulse | SW-CORE-01 | n.clark | GB United Kingdom | Emma Richardson | T1558.003 |
| ALR-00473 | 3d ago | Malware Signature Match | High | Escalated | Endpoint Agent | SRV-DC-01 | k.brown | RO Romania | Sarah Chen | T1204.002 |
| ALR-00036 | 3d ago | Data Exfiltration Attempt | High | Escalated | Dark Web Monitor | SRV-SQL-01 | h.roberts | FR France | Sarah Chen | T1567.002 |
| ALR-00406 | 3d ago | DLP Policy Violation | High | Open | SOC365 Engine | SRV-APP-01 | h.roberts | IR Iran | Emma Richardson | T1048 |
| ALR-00106 | 3d ago | Data Exfiltration Attempt | High | Investigating | DecoyPulse | SRV-FILE-01 | e.evans | IR Iran | Sarah Chen | T1567.002 |
| ALR-00292 | 3d ago | Suspicious PowerShell Execution | High | Escalated | Firewall | WS-PC-003 | c.williams | IN India | Sarah Chen | T1059.001 |
| ALR-00242 | 3d ago | Unusual Outbound Traffic | High | Open | Endpoint Agent | WS-LAP-010 | s.jones | DE Germany | James Okonkwo | T1041 |
| ALR-00212 | 3d ago | DLP Policy Violation | High | Escalated | Dark Web Monitor | WS-PC-001 | f.hall | RU Russia | James Okonkwo | T1048 |
| ALR-00488 | 3d ago | Brute Force SSH | High | Open | Endpoint Agent | SRV-DC-01 | m.taylor | IN India | Emma Richardson | T1110.001 |
| ALR-00454 | 3d ago | Anomalous DNS Query | High | Open | Email Gateway | SRV-FILE-01 | m.taylor | IR Iran | Sarah Chen | T1568.002 |
| ALR-00233 | 3d ago | Insider Threat Indicator | High | Escalated | Attack Surface Scanner | WS-LAP-010 | s.jones | NL Netherlands | Emma Richardson | T1119 |
| ALR-00359 | 3d ago | Suspicious PowerShell Execution | High | Investigating | DecoyPulse | SRV-WEB-01 | s.jones | UA Ukraine | James Okonkwo | T1059.001 |
| ALR-00320 | 3d ago | Pass-the-Hash Detected | High | Open | Dark Web Monitor | AP-WIFI-03 | k.brown | KP North Korea | James Okonkwo | T1550.002 |
| ALR-00470 | 4d ago | Ransomware Behaviour Detected | High | Investigating | EmilyAI Triage | SRV-APP-01 | r.davies | FR France | Marcus Webb | T1486 |
| ALR-00075 | 4d ago | Ransomware Behaviour Detected | High | Investigating | Dark Web Monitor | SRV-MAIL-01 | l.johnson | KP North Korea | Marcus Webb | T1486 |
| ALR-00001 | 4d ago | DecoyPulse Honeypot Triggered | High | Escalated | Cloud Connector | SRV-MAIL-01 | l.johnson | IN India | Marcus Webb | T1018 |
| ALR-00071 | 4d ago | Credential Stuffing Attempt | High | Escalated | EmilyAI Triage | FW-EDGE-01 | f.hall | US United States | Emma Richardson | T1110.004 |
| ALR-00045 | 4d ago | Unusual Outbound Traffic | High | Escalated | SOC365 Engine | WS-PC-004 | a.wilson | RO Romania | Anika Patel | T1041 |
| ALR-00332 | 5d ago | Phishing Email Blocked | High | Escalated | Network IDS | WS-PC-006 | p.thomas | DE Germany | Sarah Chen | T1566.001 |
| ALR-00134 | 5d ago | Anomalous DNS Query | High | Escalated | Dark Web Monitor | SRV-DC-01 | n.clark | NL Netherlands | James Okonkwo | T1568.002 |
| ALR-00081 | 5d ago | Ransomware Behaviour Detected | High | Investigating | Endpoint Agent | WS-LAP-012 | h.roberts | VN Vietnam | Sarah Chen | T1486 |
| ALR-00230 | 5d ago | Tor Exit Node Connection | High | Escalated | Cloud Connector | SRV-SQL-01 | d.walker | IR Iran | Marcus Webb | T1090.003 |
| ALR-00135 | 5d ago | Phishing Email Blocked | High | Investigating | Email Gateway | WS-MAC-005 | system | BR Brazil | Marcus Webb | T1566.001 |
| ALR-00124 | 5d ago | Phishing Email Blocked | High | Open | SOC365 Engine | SRV-SQL-01 | p.thomas | CN China | James Okonkwo | T1566.001 |
| ALR-00184 | 5d ago | Shadow IT Discovery | High | Escalated | Firewall | SRV-MAIL-01 | a.wilson | UA Ukraine | Marcus Webb | T1567 |
| ALR-00431 | 5d ago | Suspicious PowerShell Execution | High | Investigating | DecoyPulse | SRV-DC-01 | h.roberts | RU Russia | James Okonkwo | T1059.001 |
| ALR-00389 | 5d ago | Suspicious Scheduled Task | High | Investigating | EmilyAI Triage | SRV-SQL-01 | m.taylor | UA Ukraine | Anika Patel | T1053.005 |
| ALR-00499 | 5d ago | Anomalous DNS Query | High | Open | DecoyPulse | SRV-APP-01 | e.evans | IN India | Sarah Chen | T1568.002 |
| ALR-00061 | 5d ago | Certificate Anomaly | High | Escalated | SOC365 Engine | SRV-FILE-01 | f.hall | RO Romania | Emma Richardson | T1553.004 |
| ALR-00253 | 5d ago | Privilege Escalation Attempt | High | Open | DLP Module | WS-PC-006 | c.williams | FR France | Sarah Chen | T1134 |
| ALR-00206 | 5d ago | Malware Signature Match | High | Open | Attack Surface Scanner | SRV-FILE-01 | h.roberts | BR Brazil | Sarah Chen | T1204.002 |
| ALR-00366 | 6d ago | C2 Beacon Activity | High | Investigating | SOC365 Engine | SRV-APP-01 | k.brown | BR Brazil | Sarah Chen | T1071.001 |
| ALR-00178 | 6d ago | Pass-the-Hash Detected | High | Open | DLP Module | WS-LAP-011 | p.thomas | US United States | Sarah Chen | T1550.002 |
| ALR-00167 | 6d ago | Insider Threat Indicator | High | Investigating | DLP Module | SRV-FILE-01 | e.evans | IR Iran | Anika Patel | T1119 |