Navigation :
Unusual Machine Access
Description
This anomaly contains a large number of detections for rare or unusual machine access.
Content Mapping
This content is not mapped to any local saved search. Add mapping
Use Case
Advanced Threat Detection, Insider Threat, Security Monitoring, Compliance
Category
Lateral Movement, Insider Threat, Account Compromise, IAM Analytics
Alert Volume
Medium
(?)SPL Difficulty
None
Journey
Stage 6
MITRE ATT&CK Tactics
Initial Access
Privilege Escalation
MITRE ATT&CK Techniques
Valid Accounts
MITRE Threat Groups
APT18
APT28
APT33
APT39
APT41
Carbanak
Chimera
Dragonfly 2.0
FIN10
FIN4
FIN5
FIN6
FIN8
Leviathan
Night Dragon
OilRig
PittyTiger
Sandworm Team
Silence
Soft Cell
Suckfly
TEMP.Veles
Threat Group-3390
Wizard Spider
menuPass
Data Sources
Windows Security