Bring your software development workflows to security
A significant volume of failed logins has been detected on one or multiple accounts. It does not necessarily means that an attack is being performed, but something unusual is happening in your application.
This is the default incident category when Sqreen cannot qualify more precisely the scheme of attacks targeting user accounts.
Sqreen SDK enables you to track all login activities happening in your app.
Every minute Sqreen computes the signals and look for unusual failed login tentatives distributed over one or multiple accounts.
The signals computation happens on Sqreen’s backend based on the signals collected on all the instances of your applications. This collection happens asynchronously and is not slowing down your application performance.
Sqreen associates an authentication to a user account. You can choose what data is sent to Sqreen: email, userID etc. No other sensitive data is collected.
The peak is detected from recent authentication data.