Navigation :
Suspicious New Access
Description
Triggered when a user accesses a box resource for the first time. This anomaly is based on an individual user's baseline.
Content Mapping
This content is not mapped to any local saved search. Add mapping
Use Case
Advanced Threat Detection, Security Monitoring
Category
Account Compromise, IAM Analytics, Lateral Movement,
Zero TrustAlert Volume
MediumJourney
Stage 6MITRE ATT&CK Tactics
Exfiltration
MITRE ATT&CK Techniques
Exfiltration Over Other Network Medium
Data Sources
Audit Trail