LetsDefend Monitoring Alert

Application Token Steal Attempt Detected

Apr, 19, 2024, 08:23 AM

Event ID: 250

Event Time: Apr, 19, 2024, 08:23 AM

Rule Name: SOC275 - Application Token Steal Attempt Detected

Alert Type: Proxy

MITRE Technique:
T1098 - Persistence - Account Manipulation,
T1566.002 - Initial Access - Phishing: Spearphishing Link,
T1528 - Credential Access - Steal Application Access Token,

Severity: Medium

Security Analyst

2025 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166