Decision for 195.178.110.242

Reasons

• Enforcement was escalated due to repeated activity across nodes.
• Threat activity was observed independently on multiple nodes.
• An existing enforcement decision was retained because it was equal to or higher than the newly evaluated outcome.

MITRE ATT&CK Mappings

• Tactics: Initial Access
• Techniques: T1190

Evidence

• Nodes observed: 2
• Severity: CRITICAL
• TTL remaining: 23h 5m