Hi,
we noticed this on our Exchange and Backup Servers? This is happening every day.
By the nature of the applications, they are the most busy machines in our environment and have lot's of network connections, execute powershells all the time and so on.
The machines are important and prio 1 targets in case of an attack so we dont want to exclude anything - in other words, want full protection and the ability to query against datalake for any security breach if needed.
How can we deal with this?
Severity,When,Event,User,"User Groups",Device,"Device Group",IPAddress Low,"2021-10-22T14:01:55+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-22T11:24:47+02:00","Data-Lake-Uploads resumed",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-22T02:01:20+02:00","Data-Lake-Uploads resumed",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-22T02:01:01+02:00","Data-Lake-Uploads resumed",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-22T01:48:35+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-21T21:05:18+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-21T16:48:24+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-21T02:01:29+02:00","Data-Lake-Uploads resumed",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-21T02:01:20+02:00","Data-Lake-Uploads resumed",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-21T02:00:46+02:00","Data-Lake-Uploads resumed",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-21T01:46:36+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-20T22:16:39+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-20T18:32:11+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-20T02:01:29+02:00","Data-Lake-Uploads resumed",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-20T02:00:55+02:00","Data-Lake-Uploads resumed",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-20T02:00:50+02:00","Data-Lake-Uploads resumed",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-20T01:44:56+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-19T21:42:23+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-19T14:38:01+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-19T02:01:36+02:00","Data-Lake-Uploads resumed",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-19T02:01:18+02:00","Data-Lake-Uploads resumed",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-19T02:00:40+02:00","Data-Lake-Uploads resumed",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-19T01:46:55+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-18T21:03:05+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-18T14:13:57+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,CAS-server," Mailservers Exchange ",xxx.xxx.xxx.209 Low,"2021-10-18T02:01:27+02:00","Data-Lake-Uploads resumed",n/a,,backupserver," Veeam Servers",xxx.xxx.xxx.225 Low,"2021-10-18T02:00:56+02:00","Data-Lake-Uploads resumed",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-17T23:03:51+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-17T02:00:47+02:00","Data-Lake-Uploads resumed",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1 Low,"2021-10-16T22:13:02+02:00","Data-Lake-Uploads stopped, reached daily limit",n/a,,mailboxserver," Mailservers Exchange ",xxx.xxx.xxx.1
This thread was automatically locked due to age.