Unusual Login Time

Risk Factors

An attacker or employee who wants to evade detection might conduct malicious activity outside of normal business hours. An unusual login time might be legitimate, but suspicious activity could be part of a critical and costly attack.

The system might change the risk score for this detection.

Kill Chain

Lateral Movement

Risk Score

Next in Lateral Movement: Unusual SMB Executable File Transfer

Attack Background

Mitigation Options

Review authentication methods and enforce policies for secure credential creation and multi-factor authentication

Implement the principle of least privilege to minimize the damage done from a compromised account

MITRE ATT&CK ID

T1078

Professional Services

Partners

Partner Login

Partner Finder

View All Use Cases

View All Industries

View All Integrations

Attack Background

Mitigation Options

MITRE ATT&CK ID

What else can RevealX do for you?

View our Periodic Table of use cases