Managed Sentinel – Alert 074
| Alert ID | MS-A074 |
| Alert Name | Peer-to-peer traffic detected in perimeter firewall |
| Description | Peer-to-peer (P2P) software allows connections from/to a corporate computer to a potential malicious Internet host. This poses a number of risks such as - download malware, pirated or copyrighted material, or pornography - permit external malicious users to access and share your organization files |
| Severity Level | Medium |
| Threat Indicator | Improper Usage |
| MITRE ATT&CK Tactics | Defense Evasion Lateral Movement Command and Control Exfiltration |
| Log sources | Firewalls |
| False Positive | Sanctioned Cloud applications |
| Recommendations | Block this specific traffic in perimeter firewall |