Cooling Off Period in Malicious User Detection maximum timeframe
The Malicious user detection in the app setting has an option to configure Cooling Off Period, this is the timeframe in minutes used by system to decays a user's threat level from high to medium to none if there is no further malicious activity. The maximum value which we can setup is 120mins. We have seen attacker abusing this and resuming the malicious activity once the threat level is brought down. We would like to set this cooling period to higher value. please increase the maximum limit for this setting.
-
Guest
- Dec 13 2023
- Planned
Related ideas
Hello,
After working a lot with the feature of MUM, it would be interesting having a static blocking period, besides de cooling period, both configurable. This way you can decide if you want to block in a static way a user that gets mark as malicious with high risk and being blocked a configurable period of time. After that period, the user would enter the cooling period. this way, you can decide if you want to be more or less restrictive.
Thanks!
[heart] SILVIA ELVIRA PHILIPPON BLANCO reacted to your message: