We have a threat notification for the following.
However we have blocked all connections coming from 22.214.171.124/16 at the firewall level, and I'm unable to see any incoming traffic from that IP address in the last week (from the firewall logs also).
I'm not sure what triggers this alert in ESET but I'm also unsure as to how the firewall didn't pick up the connection attempt?
Can anyone shed some light on this detection.
Occurrences per minute