Managed Sentinel – Alert 250
| Alert ID | MS-A250 |
| Alert Name | COVID 19 IP address IOC detected - SonicWall |
| Description | This alert triggers when an connection to an IP address related to COVID-19 malware is detected in CommonSecurityLog. |
| Severity Level | Medium |
| Threat Indicator | |
| MITRE ATT&CK Tactics | CredentialAccess LateralMovement PrivilegeEscalation |
| Log sources | Common Security Logs |
| False Positives | |
| Recommendations |