Difference between revisions of "HIDS 60058"
From Atomicorp Wiki
(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...") |
Latest revision as of 10:39, 23 October 2020
Rule 1 | |
---|---|
Status | Active |
Alert Message | Atomicorp Threat Intel event |
Contents |
[edit] Description
The source IP address was detected on the Atomicorp Threat Intel Category 3 list. Category 3 sources are known active brute force attackers.
[edit] What you should do
This means a known attack source is attempting to brute force your environment. These sources can be blocked automatically using active response.
[edit] Troubleshooting
[edit] False Positives
There are no false positives with this rule.
[edit] Tuning Guidance
There is no guidance for tuning this rule, this is a generic event and the rule should not be disabled.
[edit] Additional Information
[edit] Support
If you are unsure about how to respond to this alert, please contact Atomicorp support. We're here to help you!
[edit] Similar Rules
None.
[edit] Knowledge Base Articles
None.
[edit] Outside References
None.