Incidents 2146 total / 2146 filtered
By Severity
By Status
Top Affected Hosts
MITRE Techniques
Daily Incidents (Last 7 Days)
Daily Alerts (Last 7 Days)
Hourly Distribution
All Incidents
| ID | Severity | Status | Description | Hosts | MITRE | Alerts | Created | Modified | Actions |
|---|---|---|---|---|---|---|---|---|---|
| #1111 | HIGH | resolved security testing | 'File Drop - 3732557733' along with 4 other i... |
T1140
T1102.002
|
5 | 01-10 01:33 | 01-10 02:00 | ||
| #1110 | HIGH | resolved other | 'Protection Against Security Measures Bypass ... |
T1059
T1140
+2
|
5 | 01-10 01:14 | 01-10 01:30 | ||
| #1109 | HIGH | resolved security testing | 'File Drop - 3732557733' along with 5 other i... |
T1059
T1140
+2
|
6 | 01-10 00:53 | 01-10 01:10 | ||
| #1108 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1059
T1098
+8
|
7 | 01-10 00:18 | 01-10 00:50 | ||
| #1107 | HIGH | resolved false positive | 'Protection Against Security Measures Bypass ... |
T1059
T1071.001
+3
|
5 | 01-09 23:43 | 01-10 00:10 | ||
| #1106 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1059.001
|
6 | 01-09 23:36 | 01-10 00:50 | ||
| #1105 | HIGH | resolved duplicate incident | 'Powershell Activity - 3990759154' along with... |
T1059
T1552.001
+6
|
6 | 01-09 22:54 | 01-09 23:40 | ||
| #1104 | HIGH | resolved known issue | 'Evasion Technique - 527483761' along with 5 ... |
T1218
T1059
+1
|
6 | 01-09 22:26 | 01-09 22:50 | ||
| #1103 | HIGH | resolved security testing | 'Evasion Technique - 527483761' along with 6 ... |
T1218
T1059
+2
|
7 | 01-09 21:44 | 01-09 22:20 | ||
| #1101 | HIGH | resolved other | 'Network Connection - 1971152322' along with ... |
T1071.001
T1218.007
|
6 | 01-09 20:34 | 01-09 21:30 | ||
| #1100 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1552.001
T1140
+2
|
6 | 01-09 20:06 | 01-09 20:30 | ||
| #1099 | HIGH | resolved other | 'Evasion Technique - 527483761' along with 4 ... |
T1218
|
5 | 01-09 19:24 | 01-09 20:00 | ||
| #1098 | HIGH | resolved known issue | 'Script Activity - 3055004603' along with 7 o... |
T1059
T1218
+2
|
8 | 01-09 18:42 | 01-09 19:20 | ||
| #1096 | HIGH | resolved security testing | 'File Drop - 2775215878' along with 5 other i... |
T1059
T1071.001
+4
|
6 | 01-09 18:14 | 01-09 18:40 | ||
| #1095 | HIGH | resolved other | 'Evasion Technique - 527483761' along with 5 ... |
T1218
|
6 | 01-09 17:25 | 01-09 18:10 | ||
| #1094 | HIGH | resolved security testing | 'Powershell Activity - 3083271452' along with... |
T1059
T1552.001
+3
|
6 | 01-09 17:02 | 01-09 17:20 | ||
| #1093 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1071.001
+3
|
5 | 01-09 16:36 | 01-09 17:00 | ||
| #1092 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1495
+5
|
6 | 01-09 15:56 | 01-09 16:30 | ||
| #1090 | HIGH | resolved security testing | 'File Drop - 3732557733' along with 4 other i... |
T1059
T1140
+2
|
5 | 01-09 15:26 | 01-09 15:50 | ||
| #1089 | HIGH | resolved known issue | 'Malware Activity - 1320008962' along with 6 ... |
T1059
T1059.001
|
7 | 01-09 14:23 | 01-09 15:00 | ||
| #1088 | HIGH | resolved known issue | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+1
|
5 | 01-09 13:41 | 01-09 14:10 | ||
| #1086 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 99... |
T1053.003
T1027.010
+2
|
1000 | 01-09 12:53 | 01-10 07:30 | ||
| #1085 | HIGH | resolved security testing | 'Credential Gathering Protection - 510630382'... |
T1059
T1098
+5
|
5 | 01-09 12:45 | 01-09 13:40 | ||
| #1083 | HIGH | resolved security testing | 'Persistency - 779040014' along with 80 other... |
T1053.003
T1027.010
+2
|
81 | 01-09 11:05 | 01-09 12:43 | ||
| #1081 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1059
T1218.005
+5
|
32 | 01-09 09:08 | 01-09 12:43 | ||
| #1080 | HIGH | resolved security testing | 'Staged Malware Activity - 2394207323' along ... |
T1059
T1218.005
|
5 | 01-09 08:33 | 01-09 09:06 | ||
| #1077 | HIGH | resolved security testing | 'File Drop - 4219385159' along with 64 other ... |
T1059
T1098
+11
|
65 | 01-09 00:30 | 01-09 08:25 | ||
| #1075 | HIGH | resolved security testing | 'File Drop - 3732557733' along with 7 other i... |
T1059
T1552.001
+4
|
8 | 01-08 23:20 | 01-09 00:23 | ||
| #1074 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1059
T1098
+7
|
5 | 01-08 22:52 | 01-08 23:14 | ||
| #1073 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1059.001
|
6 | 01-08 22:24 | 01-09 00:23 | ||
| #1072 | HIGH | resolved security testing | 'SYNC - Credential Gathering - 1082701410' al... |
T1003.002
T1059
+2
|
5 | 01-08 22:20 | 01-08 22:33 | ||
| #1071 | HIGH | resolved security testing | 'Bypass Attempt - 911079455' along with 4 oth... |
T1218.010
|
5 | 01-08 22:03 | 01-08 22:18 | ||
| #1070 | HIGH | resolved security testing | 'Staged Malware Activity - 2394207323' along ... |
T1059
T1218.007
+2
|
5 | 01-08 21:35 | 01-08 21:58 | ||
| #1069 | HIGH | resolved security testing | 'File Drop - 2775215878' along with 5 other i... |
T1003.002
T1059
+2
|
6 | 01-08 21:14 | 01-08 21:33 | ||
| #1068 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1071.001
T1059
+2
|
5 | 01-08 20:46 | 01-08 21:07 | ||
| #1067 | HIGH | resolved security testing | 'Powershell Activity - 3083271452' along with... |
T1059
T1495
+5
|
5 | 01-08 20:18 | 01-08 20:41 | ||
| #1065 | HIGH | resolved security testing | 'Malware Activity - 1320008962' along with 5 ... |
T1059
T1140
|
6 | 01-08 19:22 | 01-08 20:12 | ||
| #1064 | HIGH | resolved security testing | Process executes an obfuscated command for fe... |
T1059.004
|
1 | 01-08 18:16 | 01-09 08:57 | ||
| #1063 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1055
|
2 | 01-08 18:05 | 01-09 08:57 | ||
| #1062 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1098
+7
|
11 | 01-08 18:05 | 01-08 19:17 | ||
| #1061 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1055
|
5 | 01-08 18:00 | 01-08 18:04 | ||
| #1060 | HIGH | resolved security testing | 'Persistency - 779040014' along with 7 other ... |
T1053.003
T1059.004
|
8 | 01-08 17:59 | 01-08 18:04 | ||
| #1059 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1059
T1098
+8
|
5 | 01-08 17:30 | 01-08 17:59 | ||
| #1058 | HIGH | resolved security testing | 'Persistency - 779040014' along with 14 other... |
T1053.003
T1027.010
+2
|
15 | 01-08 17:30 | 01-08 17:34 | ||
| #1057 | HIGH | resolved security testing | Suspicious script engine arguments in command... |
T1059
|
1 | 01-08 17:28 | 01-09 08:57 | ||
| #1055 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1140
+2
|
4 | 01-08 17:02 | 01-08 17:20 | ||
| #1054 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1059
T1552.001
+4
|
6 | 01-08 17:02 | 01-08 17:20 | ||
| #1053 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 40... |
T1053.003
T1027.010
+2
|
41 | 01-08 17:00 | 01-08 17:20 | ||
| #1052 | HIGH | resolved security testing | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+1
|
3 | 01-08 16:50 | 01-08 16:57 | ||
| #1051 | HIGH | resolved security testing | 'Command-line arguments match Mimikatz execut... |
T1003
T1071.001
+1
|
3 | 01-08 16:49 | 01-08 16:57 | ||
| #1050 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1055
|
2 | 01-08 16:42 | 01-08 16:57 | ||
| #1049 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 2 ... |
T1055
|
3 | 01-08 16:40 | 01-08 16:42 | ||
| #1048 | HIGH | resolved security testing | 'Persistency - 779040014' along with 1 other ... |
T1053.003
|
2 | 01-08 16:40 | 01-08 16:42 | ||
| #1046 | HIGH | resolved security testing | 'Regsvr32 may have run code from an untrusted... |
T1218.010
T1218.007
+1
|
3 | 01-08 16:36 | 01-08 16:42 | ||
| #1045 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1071.001
T1218.007
+1
|
4 | 01-08 16:27 | 01-08 16:42 | ||
| #1044 | HIGH | resolved security testing | 'File Drop - 1815185192' along with 1 other i... |
T1140
T1102.002
|
2 | 01-08 16:23 | 01-08 16:25 | ||
| #1043 | HIGH | resolved security testing | 'Persistency - 456694134' along with 1 other ... |
T1027.010
T1055
|
2 | 01-08 16:20 | 01-08 16:25 | ||
| #1042 | HIGH | resolved duplicate incident | 'Protection Against Security Measures Bypass ... |
T1059
T1562.001
+1
|
6 | 01-08 16:10 | 01-08 16:20 | ||
| #1040 | HIGH | resolved security testing | 'Evasion Technique - 527483761' along with 1 ... |
T1218
|
2 | 01-08 15:59 | 01-08 16:08 | ||
| #1039 | HIGH | resolved security testing | 'File Drop - 1815185192' along with 6 other i... |
T1059
T1562.001
+3
|
7 | 01-08 15:57 | 01-08 16:08 | ||
| #1038 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 24... |
T1053.003
T1059.004
+1
|
25 | 01-08 15:46 | 01-08 15:57 | ||
| #1037 | HIGH | resolved security testing | 'Possible LSASS memory dump' along with 2 oth... |
T1216
T1003.001
|
3 | 01-08 15:44 | 01-08 15:56 | ||
| #1035 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1071.001
T1218.007
|
4 | 01-08 15:38 | 01-08 15:56 | ||
| #1034 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 18... |
T1053.003
T1027.010
+2
|
19 | 01-08 15:20 | 01-08 15:36 | ||
| #1033 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 3 ... |
T1059.004
T1055
|
4 | 01-08 15:15 | 01-08 15:17 | ||
| #1032 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1055
|
6 | 01-08 15:08 | 01-08 15:17 | ||
| #1031 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1053.003
T1027.010
+1
|
6 | 01-08 15:07 | 01-08 15:17 | ||
| #1030 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1059.004
|
2 | 01-08 15:00 | 01-08 15:07 | ||
| #1029 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 7 ... |
T1053.003
T1055
|
8 | 01-08 15:00 | 01-08 15:07 | ||
| #1027 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 93... |
T1053.003
T1027.010
+2
|
933 | 01-07 11:38 | 01-08 14:57 | ||
| #1026 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1053.003
T1059.004
+1
|
5 | 01-07 11:38 | 01-08 15:07 | ||
| #1025 | HIGH | resolved security testing | 'Persistency - 779040014' along with 2 other ... |
T1053.003
T1027.010
+1
|
3 | 01-07 10:18 | 01-07 11:38 | ||
| #1024 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1059.004
T1055
|
2 | 01-07 10:16 | 01-07 11:38 | ||
| #1023 | HIGH | resolved security testing | 'Persistency - 779040014' along with 5 other ... |
T1053.003
T1059.004
|
6 | 01-07 10:14 | 01-07 11:38 | ||
| #1022 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1027.010
T1059.004
+1
|
3 | 01-07 10:13 | 01-07 10:14 | ||
| #1021 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1053.003
T1027.010
+1
|
5 | 01-07 10:13 | 01-07 10:14 | ||
| #1020 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1053.003
T1027.010
+2
|
5 | 01-07 10:13 | 01-07 10:14 | ||
| #1018 | HIGH | resolved security testing | Process executes an obfuscated command for fe... |
T1059.004
|
1 | 01-07 10:13 | 01-07 10:13 | ||
| #1017 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1053.003
T1027.010
+1
|
6 | 01-07 10:10 | 01-07 10:13 | ||
| #1016 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 2 ... |
T1055
|
3 | 01-07 10:08 | 01-07 10:10 | ||
| #1015 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 3 ... |
T1059.004
T1055
|
4 | 01-07 10:05 | 01-07 10:10 | ||
| #1014 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 3 ... |
T1053.003
T1059.004
+1
|
4 | 01-07 10:05 | 01-07 10:10 | ||
| #1013 | HIGH | resolved security testing | 'Persistency - 779040014' along with 1 other ... |
T1053.003
|
2 | 01-07 10:00 | 01-07 10:05 | ||
| #1012 | HIGH | resolved security testing | 'Persistency - 779040014' along with 2 other ... |
T1053.003
T1055
|
3 | 01-07 10:00 | 01-07 10:05 | ||
| #1011 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 2 ... |
T1053.003
T1055
|
3 | 01-07 10:00 | 01-07 10:05 | ||
| #1010 | HIGH | resolved security testing | 'Persistency - 456694134' along with 5 other ... |
T1053.003
T1027.010
+2
|
6 | 01-07 09:49 | 01-07 10:05 | ||
| #1009 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1053.003
T1027.010
+2
|
6 | 01-07 09:21 | 01-07 10:05 | ||
| #1008 | HIGH | resolved security testing | Remote shell persistency acquired using the c... |
T1053.003
|
1 | 01-07 09:20 | 01-07 09:20 | ||
| #1007 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1055
|
2 | 01-07 09:20 | 01-07 09:20 | ||
| #1006 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 2 ... |
T1053.003
T1055
|
3 | 01-07 09:20 | 01-07 09:20 | ||
| #1005 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1059.004
T1055
|
2 | 01-07 09:17 | 01-07 09:17 | ||
| #1004 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 3 ... |
T1053.003
T1055
|
4 | 01-07 09:05 | 01-07 09:17 | ||
| #1003 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1055
|
2 | 01-07 09:03 | 01-07 09:17 | ||
| #1002 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1053.003
T1027.010
+1
|
5 | 01-07 09:01 | 01-07 09:10 | ||
| #1001 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 3 ... |
T1055
|
4 | 01-07 08:49 | 01-07 09:00 | ||
| #1000 | HIGH | resolved security testing | 'Persistency - 779040014' along with 4 other ... |
T1053.003
T1055
|
5 | 01-07 08:48 | 01-07 09:00 | ||
| #999 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1059.004
T1055
|
5 | 01-07 08:48 | 01-07 09:00 | ||
| #998 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1059.004
T1055
|
2 | 01-07 08:45 | 01-07 08:47 | ||
| #997 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1059.004
T1055
|
3 | 01-07 08:45 | 01-07 08:47 | ||
| #996 | HIGH | resolved security testing | 'Persistency - 779040014' along with 2 other ... |
T1053.003
T1027.010
+1
|
3 | 01-07 08:44 | 01-07 08:47 |
Showing 100 of 2146 filtered (2146 total)
Last refresh: 2026-01-21 04:37:17