Reasons
- Multiple stages of an attack chain were observed within a short time window.
- Further attacks within a short window, permanent ban applied based on indicators of persistence attacks.
No MITRE ATT&CK mappings available for this decision.
Evidence
- Nodes observed: 1
- Severity: HIGH
- TTL remaining: 1d 1h