IBM.WebSphere.MQ.Login.User.ID.Brute.Force.Check
Description
This indicates detection of an attempted bruteforce scan targeting IBM WebSphere MQ for a valid USER ID.
The attack consists of multiple requests to conduct brute force scanning, launching at a rate of about 15 times in 1 second.
Affected Products
IBM WebSphere MQ
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Monitor the traffic from the network for any suspicious activity.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |