Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
This alert leverages Defender for IoT to detect an OT device communicating with Internet which is possibly an indication of improper configuration of an application or malicious activity on the network.
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | IoTOTThreatMonitoringwithDefenderforIoT |
| ID | 9ff3b13b-287a-4ed0-8f6b-7e7b66cbbcbd |
| Severity | High |
| Status | Available |
| Kind | Scheduled |
| Tactics | LateralMovement |
| Techniques | T0886 |
| Required Connectors | IoT |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Selection Criteria | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|---|
SecurityAlert |
AlertName has "Internet"ProviderName == "IoTSecurity" |
✓ | ✗ | ✓ |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
↑ Back to Analytic Rules · Back to IoTOTThreatMonitoringwithDefenderforIoT