Log forensics: Finding malicious activity in multicloud environments with Dynatrace Grail
Dynatrace
MAY 21, 2023
Hint two: Failed logins spike A quick look at the metrics dashboard dating back to 8 February shows a spike in failed logins metrics before the attack was detected. Because we can’t find the attacker by the IP address, let’s look at abnormalities in login behavior because there is a chance they’ll be related to reconnaissance.
Let's personalize your content