Attack Timeline
Chronological view of security events
Phishing Email Detected
HIGHT1566Malicious attachment identified in email from external sender
14:32:15
Suspicious Process Execution
CRITICALT1059.001PowerShell spawned from Outlook process
14:33:42
Process Terminated
HIGHAutomated response killed suspicious PowerShell process
14:35:18
Credential Access Attempt
CRITICALT1003LSASS memory access detected from unknown process
14:36:55
Incident Escalated
CRITICALMultiple high-severity detections triggered SOC escalation
14:38:22
Host Isolated
CRITICALWorkstation-15 isolated from network pending investigation
14:42:10