Incident Response SOP – Suspicious Login Alerts

 


Title: Incident Response SOP – Suspicious Login Alerts
Author: Patience Rusere, Technical Writer
Document Type: Internal Use Only

Purpose:
To define the standardized process for Tier 1 and Tier 2 analysts to respond to unusual login activity detected on DN Cloud Services and Remote Suite™ Admin Console.

Scope:
Applies to all security operations center (SOC) analysts and IT admins handling user authentication incidents.

Procedure:

  1. Alert Triage
    • Review SIEM logs for geolocation anomalies, login time irregularities, and failed attempts.
    • Confirm correlation with internal threat intelligence (i.e., recent phishing campaigns).
  2. User Verification
    • Contact the affected user via a secure channel (not email).
    • Ask for confirmation of login behavior and current device use.
  3. Response Action
    • If unconfirmed, force a password reset and revoke all active tokens.
    • Create an incident ticket and label as “Medium – User Compromise Suspected.”
  4. Documentation
    • Log the incident, timestamps, responder actions, and user verification outcomes in CyberTrack.

 

 

Comments

Post a Comment

Popular posts from this blog

MTN Prepaid vs. Contract: Which Cell Plan is Right for You?

 CHOOSING  a mobile plan used to be simple: get a prepaid SIM and recharge when needed. But today’s mobile needs are more complex, and MTN has responded with a variety of options for different users. From students watching TikTok on the go to professionals managing email on multiple devices, MTN offers plans that fit nearly every lifestyle. So how do you choose between prepaid and contract (postpaid)? Let’s break it down. What is Prepaid? Prepaid customers load airtime or buy bundles upfront. There’s no monthly bill—just the freedom to top up as needed. Best For: Budget-conscious users Teenagers and students People with irregular usage patterns MTN Prepaid Benefits: No credit check required MTN Data4Keeps and Night Express bundles Freedom to switch bundles monthly Example Bundle: 3GB Anytime + 3GB Night for R149 What is Postpaid (Contract)? With a postpaid plan, you commit to a fixed monthly fee and get a set number of minutes, SMS, and dat...
Read more

iPhone 13 on MTN – Still a Smart Buy in 2025

WITH  newer models like the iPhone 15 Pro on the shelves, you might wonder if the iPhone 13 still holds its own in 2025. The short answer: absolutely —especially if you’re looking to step into Apple’s ecosystem without spending top rand. Offered on contract through MTN and available in several colors and storage sizes, the iPhone 13 is a polished, powerful option that blends performance with longevity. 📱 Core Specs: Display: 6.1" Super Retina XDR (OLED) Chipset: Apple A15 Bionic Cameras: Dual 12MP (main + ultra-wide); 12MP front Battery: ~3,240mAh with wireless and MagSafe charging Storage Options: 128GB / 256GB / 512GB 5G Ready: Yes – compatible with all MTN 5G bands 🚀 Performance That’s Still Ahead of the Pack Powered by the A15 Bionic chip, the iPhone 13 still runs circles around many newer Android phones in the same price range. Everyday apps launch instantly. Photo and video editing? No sweat. Even with multiple apps open, lag is virtually n...
Read more