Navigation :

Unusual Time of Badge Access

Description

Triggered by badge access that is outside the normal user's baseline. This can be either failed or successful badge-in attempts outside of the normal baseline.

Content Mapping

This content is not mapped to any local saved search. Add mapping


Use Case

Advanced Threat Detection, Insider Threat

Category

Insider Threat

Alert Volume

Low (?)

SPL Difficulty

None

Journey

Stage 6

MITRE ATT&CK Tactics

Reconnaissance

MITRE ATT&CK Techniques

Gather Victim Org Information

Determine Physical Locations

Data Sources

Physical Security