Dear ,
Based on our observation, ASK SpectrSOC has detected the following suspicious activity/threat.
Detected Threat(s):
Offense IDs:
SOC has detected suspicious user activity from the following hosts within your network:
Threat(s) Analysis:
| Offense ID | |
|---|---|
| Category | |
| Offense Type | |
| Offense IP | |
| Targeted Hosts/Network | |
| Port | |
| Severity | |
| Date | |
| Start Time | |
| End Time | |
| Count |
Supporting Evidence/Collaterals/Observations/Reference link:
QRadar detects suspicious activity within the associated hosts. The type of the suspicious activities are:
Refer attached Screenshot as references.
Recommendations:
SOC Updates:
The latest activity is at hours. All of the attempts have been dropped by the firewall. ASK SpectrSOC will monitor this offense closely if any suspicious activity appears from the source IP.