Events, threat intel & full audit trail
| ID | Type | Severity | Source | IP | User | Description | Time | Status | |
|---|---|---|---|---|---|---|---|---|---|
| SE-001 | Brute Force Attempt | critical | Auth Service | 185.220.101.45 | unknown | 48 failed login attempts in 2 minutes | 08:12:04 | open | |
| SE-002 | Privilege Escalation | high | IAM | 103.21.58.99 | dev_user_12 | Attempted role elevation outside working hours | 07:44:22 | open | |
| SE-003 | Unusual API Volume | high | API Gateway | 49.207.120.8 | svc-account-4 | API calls 5× above baseline in 10 min window | 06:31:18 | resolved | |
| SE-004 | Data Export Large Batch | medium | Storage | 27.106.22.33 | analyst_07 | 1.2 GB export from production dataset | 17:22:45 | open | |
| SE-005 | Config Change | medium | Admin | 103.21.58.12 | pawan.kaushal | Firewall rule modified | 14:05:11 | resolved | |
| SE-006 | Certificate Expiry | low | TLS Manager | — | — | TLS cert expires in 14 days: api.vedas.io | 09:00:00 | open | |
| SE-007 | Successful Login from New Country | info | Auth Service | 77.88.55.60 | ravi.kumar | Login from Russia — new location | 22:14:33 | open |