Incidents 2146 total / 2146 filtered
By Severity
By Status
Top Affected Hosts
MITRE Techniques
Daily Incidents (Last 7 Days)
Daily Alerts (Last 7 Days)
Hourly Distribution
All Incidents
| ID | Severity | Status | Description | Hosts | MITRE | Alerts | Created | Modified | Actions |
|---|---|---|---|---|---|---|---|---|---|
| #1356 | HIGH | resolved duplicate incident | 'Evasion Technique - 527483761' along with 4 ... |
T1218
T1059
+2
|
5 | 01-12 03:03 | 01-12 03:20 | ||
| #1354 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 13... |
T1053.003
T1059.004
+1
|
14 | 01-12 02:47 | 01-12 03:02 | ||
| #1353 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1003.002
T1071.001
+3
|
5 | 01-12 02:39 | 01-12 02:57 | ||
| #1352 | HIGH | resolved security testing | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+2
|
5 | 01-12 02:25 | 01-12 02:37 | ||
| #1351 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1053.003
T1027.010
+1
|
6 | 01-12 02:19 | 01-12 02:40 | ||
| #1348 | HIGH | resolved security testing | 'File Drop - 1815185192' along with 4 other i... |
T1140
T1102.002
|
5 | 01-12 01:53 | 01-12 02:17 | ||
| #1347 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 7 ... |
T1059.004
T1055
|
8 | 01-12 01:47 | 01-12 01:52 | ||
| #1346 | HIGH | resolved security testing | 'Persistency - 779040014' along with 5 other ... |
T1053.003
T1027.010
+1
|
6 | 01-12 01:47 | 01-12 02:02 | ||
| #1345 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1055
|
2 | 01-12 01:20 | 01-12 01:23 | ||
| #1344 | HIGH | resolved security testing | Process executes an obfuscated command for fe... |
T1059.004
|
1 | 01-12 01:19 | 01-12 01:23 | ||
| #1343 | HIGH | resolved other | 'Staged Malware Activity - 4061872954' along ... |
T1218
T1140
+2
|
6 | 01-12 01:18 | 01-12 01:50 | ||
| #1342 | HIGH | resolved security testing | 'File Drop - 3732557733' along with 5 other i... |
T1059
T1562.001
+3
|
6 | 01-12 01:11 | 01-12 02:02 | ||
| #1341 | HIGH | resolved security testing | 'Persistency - 456694134' along with 5 other ... |
T1053.003
T1027.010
+2
|
6 | 01-12 01:08 | 01-12 01:20 | ||
| #1340 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1059.004
T1055
|
6 | 01-12 01:08 | 01-12 01:23 | ||
| #1339 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 6 ... |
T1053.003
T1059.004
+1
|
7 | 01-12 01:05 | 01-12 01:06 | ||
| #1338 | HIGH | resolved security testing | 'Persistency - 779040014' along with 15 other... |
T1053.003
T1027.010
+1
|
16 | 01-12 00:51 | 01-12 00:56 | ||
| #1337 | HIGH | resolved security testing | 'Persistency - 456694134' along with 4 other ... |
T1053.003
T1027.010
|
5 | 01-12 00:48 | 01-12 00:50 | ||
| #1336 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1546.007
+3
|
5 | 01-12 00:42 | 01-12 01:06 | ||
| #1332 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 12... |
T1053.003
T1059.004
+1
|
13 | 01-12 00:33 | 01-12 00:36 | ||
| #1331 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1059.004
T1055
|
14 | 01-12 00:32 | 01-12 00:51 | ||
| #1327 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1053.003
T1055
|
5 | 01-12 00:30 | 01-12 00:31 | ||
| #1326 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1059.004
|
3 | 01-12 00:25 | 01-12 00:27 | ||
| #1325 | HIGH | resolved security testing | Suspicious cron job using a base64 payload |
T1027.010
|
1 | 01-12 00:22 | 01-12 00:27 | ||
| #1324 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1055
|
6 | 01-12 00:22 | 01-12 00:27 | ||
| #1323 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1059
T1098
+7
|
5 | 01-12 00:16 | 01-12 00:40 | ||
| #1322 | HIGH | resolved security testing | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+1
|
3 | 01-12 00:08 | 01-12 01:06 | ||
| #1321 | HIGH | resolved security testing | 'File Drop - 2775215878' along with 4 other i... |
T1059
T1140
+1
|
5 | 01-12 00:01 | 01-12 00:15 | ||
| #1319 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1059.004
T1055
|
6 | 01-11 23:57 | 01-12 00:20 | ||
| #1318 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 8 ... |
T1053.003
T1059.004
+1
|
9 | 01-11 23:57 | 01-12 00:00 | ||
| #1317 | HIGH | resolved security testing | 'Persistency - 456694134' along with 5 other ... |
T1053.003
T1027.010
+1
|
6 | 01-11 23:48 | 01-11 23:50 | ||
| #1316 | HIGH | resolved security testing | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+1
|
5 | 01-11 23:44 | 01-12 00:51 | ||
| #1314 | HIGH | resolved security testing | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+2
|
5 | 01-11 23:40 | 01-11 23:55 | ||
| #1311 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 1 ... |
T1055
|
2 | 01-11 23:36 | 01-11 23:36 | ||
| #1310 | HIGH | resolved security testing | Remote shell persistency acquired using the c... |
T1053.003
|
1 | 01-11 23:36 | 01-11 23:36 | ||
| #1305 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1053.003
T1027.010
+2
|
11 | 01-11 23:30 | 01-11 23:35 | ||
| #1304 | HIGH | resolved security testing | 'Persistency - 779040014' along with 4 other ... |
T1053.003
T1059.004
|
5 | 01-11 23:18 | 01-11 23:30 | ||
| #1303 | HIGH | resolved security testing | 'Persistency - 1983659418' along with 1 other... |
T1059
T1140
+1
|
2 | 01-11 23:11 | 01-11 23:17 | ||
| #1302 | HIGH | resolved security testing | 'Persistency - 779040014' along with 1 other ... |
T1053.003
T1027.010
|
2 | 01-11 23:08 | 01-11 23:17 | ||
| #1301 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1059.004
T1055
|
5 | 01-11 23:07 | 01-11 23:09 | ||
| #1299 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 13... |
T1053.003
T1059.004
+1
|
14 | 01-11 22:46 | 01-11 23:04 | ||
| #1298 | HIGH | resolved security testing | 'Credential Gathering Protection - 510630382'... |
T1098
T1059
+6
|
7 | 01-11 22:44 | 01-11 23:09 | ||
| #1297 | HIGH | resolved security testing | 'Persistency - 779040014' along with 4 other ... |
T1053.003
T1027.010
|
5 | 01-11 22:30 | 01-11 22:34 | ||
| #1296 | HIGH | resolved security testing | 'Evasion Technique - 527483761' along with 4 ... |
T1218
T1059
+1
|
5 | 01-11 22:16 | 01-11 22:39 | ||
| #1294 | HIGH | resolved security testing | 'Persistency - 456694134' along with 10 other... |
T1053.003
T1027.010
+2
|
11 | 01-11 22:00 | 01-11 22:24 | ||
| #1293 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1053.003
T1055
|
6 | 01-11 21:57 | 01-11 22:03 | ||
| #1292 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1027.010
T1059.004
+1
|
5 | 01-11 21:55 | 01-11 22:44 | ||
| #1291 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 12... |
T1055
|
13 | 01-11 21:49 | 01-11 21:53 | ||
| #1290 | HIGH | resolved security testing | 'Persistency - 779040014' along with 4 other ... |
T1053.003
|
5 | 01-11 21:34 | 01-11 21:53 | ||
| #1289 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1027.010
T1055
|
5 | 01-11 21:34 | 01-11 21:48 | ||
| #1287 | HIGH | resolved other | 'Protection Against Security Measures Bypass ... |
T1059
T1059.001
|
5 | 01-11 21:27 | 01-11 22:10 | ||
| #1286 | HIGH | resolved security testing | 'Persistency - 779040014' along with 6 other ... |
T1053.003
T1027.010
+1
|
7 | 01-11 21:05 | 01-11 21:23 | ||
| #1283 | HIGH | resolved security testing | 'Staged Malware Activity - 4061872954' along ... |
T1552.001
T1218.005
+1
|
5 | 01-11 20:31 | 01-11 21:08 | ||
| #1280 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1053.003
T1027.010
+2
|
11 | 01-11 20:30 | 01-11 21:33 | ||
| #1281 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 4 ... |
T1059.004
T1055
|
5 | 01-11 20:30 | 01-11 21:03 | ||
| #1278 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1059.001
|
5 | 01-11 20:03 | 01-11 20:28 | ||
| #1277 | HIGH | resolved security testing | 'Persistency - 779040014' along with 6 other ... |
T1053.003
T1027.010
|
7 | 01-11 20:00 | 01-11 20:02 | ||
| #1276 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 5 ... |
T1059.004
T1055
|
6 | 01-11 20:00 | 01-11 20:02 | ||
| #1273 | HIGH | resolved security testing | 'Evasion Technique - 527483761' along with 96... |
T1059
T1098
+15
|
97 | 01-11 09:33 | 01-11 19:58 | ||
| #1272 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 24... |
T1053.003
T1027.010
+2
|
243 | 01-11 09:00 | 01-11 19:59 | ||
| #1271 | HIGH | resolved false positive | 'File Drop - 1815185192' along with 5 other i... |
T1059
T1098
+8
|
6 | 01-11 08:44 | 01-11 09:20 | ||
| #1268 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1552.001
T1552.002
+1
|
5 | 01-11 08:02 | 01-11 08:40 | ||
| #1267 | HIGH | resolved security testing | 'Bypass Attempt - 911079455' along with 4 oth... |
T1218.010
|
5 | 01-11 07:32 | 01-11 08:00 | ||
| #1266 | HIGH | resolved duplicate incident | 'Evasion Technique - 527483761' along with 5 ... |
T1218
T1059
+2
|
6 | 01-11 06:52 | 01-11 07:30 | ||
| #1265 | HIGH | resolved duplicate incident | 'File Drop - 3732557733' along with 4 other i... |
T1140
T1102.002
|
5 | 01-11 06:10 | 01-11 06:40 | ||
| #1263 | HIGH | resolved duplicate incident | 'Evasion Technique - 527483761' along with 4 ... |
T1218
T1059
+2
|
5 | 01-11 05:35 | 01-11 06:10 | ||
| #1262 | HIGH | resolved other | 'Ransomware Activity - 426137677' along with ... |
T1495
T1657
+4
|
6 | 01-11 05:14 | 01-11 05:30 | ||
| #1261 | HIGH | resolved other | 'Powershell Activity - 3083271452' along with... |
T1059
T1495
+4
|
5 | 01-11 04:46 | 01-11 05:10 | ||
| #1260 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1059.001
|
6 | 01-11 04:14 | 01-11 04:40 | ||
| #1259 | HIGH | resolved security testing | 'Credential Gathering Protection - 510630382'... |
T1098
T1059
+7
|
6 | 01-11 03:36 | 01-11 04:00 | ||
| #1258 | HIGH | resolved security testing | 'Credential Gathering Protection - 122198212'... |
T1059
T1218.005
+4
|
9 | 01-11 02:54 | 01-11 03:30 | ||
| #1255 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1098
+6
|
6 | 01-11 02:19 | 01-11 02:50 | ||
| #1254 | HIGH | resolved known issue | 'Malware Activity - 1320008962' along with 4 ... |
T1059
T1140
+2
|
5 | 01-11 01:44 | 01-11 02:10 | ||
| #1253 | HIGH | resolved known issue | 'Bypass Attempt - 911079455' along with 5 oth... |
T1059
T1140
+3
|
6 | 01-11 01:16 | 01-11 01:40 | ||
| #1252 | HIGH | resolved duplicate incident | 'Powershell Activity - 3083271452' along with... |
T1059
T1140
+2
|
5 | 01-11 01:14 | 01-11 01:50 | ||
| #1251 | HIGH | resolved duplicate incident | 'Volume Shadow Deletion Attempt - 1186929355'... |
T1140
T1562.002
+1
|
5 | 01-11 00:45 | 01-11 02:50 | ||
| #1250 | HIGH | resolved security testing | 'Powershell Activity - 3083271452' along with... |
T1059
T1140
+2
|
9 | 01-11 00:41 | 01-11 01:10 | ||
| #1248 | HIGH | resolved other | 'Powershell Activity - 3083271452' along with... |
T1059
T1071.001
+4
|
6 | 01-11 00:06 | 01-11 00:40 | ||
| #1247 | HIGH | resolved other | 'File Drop - 2775215878' along with 5 other i... |
T1059
T1098
+6
|
6 | 01-10 23:45 | 01-11 00:00 | ||
| #1246 | HIGH | resolved security testing | 'Script Engine Activity - 2909583408' along w... |
T1059
T1059.001
|
5 | 01-10 23:39 | 01-11 00:30 | ||
| #1245 | HIGH | resolved security testing | 'Bypass Attempt - 911079455' along with 6 oth... |
T1059
T1140
+3
|
7 | 01-10 22:56 | 01-11 18:49 | ||
| #1244 | HIGH | resolved duplicate incident | 'File Drop - 2775215878' along with 5 other i... |
T1059
T1495
+5
|
6 | 01-10 21:53 | 01-10 22:50 | ||
| #1243 | HIGH | resolved security testing | 'Powershell Activity - 3990759154' along with... |
T1059
T1140
+2
|
8 | 01-10 21:20 | 01-11 18:49 | ||
| #1242 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1059.001
|
6 | 01-10 21:11 | 01-10 21:40 | ||
| #1241 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 26... |
T1055
|
269 | 01-10 20:41 | 01-11 19:55 | ||
| #1240 | HIGH | resolved security testing | 'Staged Malware Activity - 2123359011' along ... |
T1053.003
T1027.010
+1
|
261 | 01-10 20:41 | 01-11 18:49 | ||
| #1239 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 2 ... |
T1055
|
3 | 01-10 20:40 | 01-10 20:40 | ||
| #1237 | HIGH | resolved security testing | 'Persistency - 779040014' along with 1 other ... |
T1053.003
T1059.004
|
2 | 01-10 20:32 | 01-10 20:40 | ||
| #1236 | HIGH | resolved security testing | 'Protection Against Security Measures Bypass ... |
T1059
T1218
+1
|
5 | 01-10 20:22 | 01-10 20:50 | ||
| #1235 | HIGH | resolved other | 'Regsvr32 may have run code from an untrusted... |
T1003.002
T1218.010
|
7 | 01-10 20:02 | 01-10 20:20 | ||
| #1234 | HIGH | resolved false positive | 'Protection Against Security Measures Bypass ... |
T1059
T1098
+5
|
5 | 01-10 20:01 | 01-10 20:20 | ||
| #1233 | HIGH | resolved security testing | 'Persistency - 456694134' along with 4 other ... |
T1053.003
T1027.010
|
5 | 01-10 20:00 | 01-10 20:41 | ||
| #1232 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1003
T1071.001
+2
|
5 | 01-10 19:51 | 01-10 20:00 | ||
| #1231 | HIGH | resolved security testing | 'Process Injection - 288965039' along with 6 ... |
T1059.004
T1055
|
7 | 01-10 19:37 | 01-10 20:40 | ||
| #1230 | HIGH | resolved duplicate incident | 'Network Connection - 1971152322' along with ... |
T1059
T1216
+5
|
7 | 01-10 19:29 | 01-10 19:50 | ||
| #1229 | HIGH | resolved duplicate incident | 'Powershell Activity - 3083271452' along with... |
T1059
T1140
+1
|
5 | 01-10 19:26 | 01-10 19:50 | ||
| #1228 | HIGH | resolved security testing | 'Network Connection - 1971152322' along with ... |
T1059
T1216
+3
|
8 | 01-10 19:07 | 01-10 19:20 | ||
| #1227 | HIGH | resolved other | 'Network Connection - 1971152322' along with ... |
T1059
T1098
+7
|
5 | 01-10 18:51 | 01-10 19:20 | ||
| #1225 | HIGH | resolved security testing | 'Powershell Activity - 3083271452' along with... |
T1059.005
T1059
+7
|
14 | 01-10 17:55 | 01-10 18:44 | ||
| #1224 | HIGH | resolved security testing | Certutil.exe downloads a suspicious file |
T1140
T1102.002
|
1 | 01-10 17:20 | 01-10 17:37 | ||
| #1223 | HIGH | resolved security testing | 'Ransomware Activity - 426137677' along with ... |
T1059
T1495
+4
|
6 | 01-10 16:52 | 01-10 17:14 |
Showing 100 of 2146 filtered (2146 total)
Last refresh: 2026-01-21 03:00:44