| Abnormal Authentication & Access | app-login
↳cef-ping-app-login-2
authentication-successful
↳cef-ping-auth-successful-4
↳cef-ping-auth-successful-5
failed-app-login
↳cef-ping-failed-app-login-2
vpn-login
↳cef-pingone-vpn-login
| T1078 - Valid Accounts
T1133 - External Remote Services
| |
| Compromised Credentials | app-login
↳cef-ping-app-login-2
authentication-successful
↳cef-ping-auth-successful-4
↳cef-ping-auth-successful-5
failed-app-login
↳cef-ping-failed-app-login-2
vpn-login
↳cef-pingone-vpn-login
| T1078 - Valid Accounts
T1133 - External Remote Services
T1190 - Exploit Public Fasing Application
| |
| Data Access | app-login
↳cef-ping-app-login-2
failed-app-login
↳cef-ping-failed-app-login-2
| T1078 - Valid Accounts
| |
| Lateral Movement | app-login
↳cef-ping-app-login-2
authentication-successful
↳cef-ping-auth-successful-4
↳cef-ping-auth-successful-5
failed-app-login
↳cef-ping-failed-app-login-2
vpn-login
↳cef-pingone-vpn-login
| T1078 - Valid Accounts
T1090.003 - Proxy: Multi-hop Proxy
| |
| Malware | app-login
↳cef-ping-app-login-2
authentication-successful
↳cef-ping-auth-successful-4
↳cef-ping-auth-successful-5
vpn-login
↳cef-pingone-vpn-login
| T1078 - Valid Accounts
| |
| Physical Security | vpn-login
↳cef-pingone-vpn-login
| T1133 - External Remote Services
| |
| Privilege Abuse | app-login
↳cef-ping-app-login-2
failed-app-login
↳cef-ping-failed-app-login-2
vpn-login
↳cef-pingone-vpn-login
| T1078 - Valid Accounts
T1133 - External Remote Services
| |
| Privileged Activity | app-login
↳cef-ping-app-login-2
failed-app-login
↳cef-ping-failed-app-login-2
| T1078 - Valid Accounts
| |
| Ransomware | app-login
↳cef-ping-app-login-2
authentication-successful
↳cef-ping-auth-successful-4
↳cef-ping-auth-successful-5
failed-app-login
↳cef-ping-failed-app-login-2
vpn-login
↳cef-pingone-vpn-login
| T1078 - Valid Accounts
| |