Feb. 1, 2024, 7:45 p.m. | /u/Grandleveler33

cybersecurity www.reddit.com

Hello Redditors,

My SOC has a Microsoft alert which creates an alert every time a users account has more than 25 failed login attempts. My organization also uses SSO and most of the time the alerts are triggered by an application timing out and then MFA prompts get sent to the users which they don’t accept. Sometimes when a user resets their password we get the alerts as well. Typically for analysis we are checking the IP reputation but not …

account alert alerts application cybersecurity hello login login attempts mfa microsoft organization prompts soc sso

Privacy Engineer

@ Snap Inc. | Santa Monica - 2850 Ocean Park Blvd

Senior Security Researcher - Security Automation (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

Information Systems Security Engineer (ISSE)

@ Interclypse | Annapolis Junction, MD, US

Information Systems Security Officer (ISSO)

@ Interclypse | Annapolis Junction, MD, US

Systems Security Engineer (Hybrid)

@ RTX | FL410: Largo FL MFG 7887 Bryan Dairy Road , Largo, FL, 33777 USA

Principal Cyber Security Engineer (Onsite)

@ RTX | HIA33: Cedar Rapids, IA (Intertrade) 400 Collins Road NE MS 153-220, Cedar Rapids, IA, 52411-6636 USA