This is interesting as we have started getting these. Not looked into it fully, have you found anything about it?
Seems local which is it's not on the published list of attacks.
------------------------------
IT Support
------------------------------
Original Message:
Sent: 06-23-2020 06:04 AM
From: Sean Furman
Subject: IPS Signature Missing on SEPM Server
Morning Everyone, we are getting some logging for the IPS signature below. I cannot find it on the SEPM server. Anyone else hit this? I would like to change it to block but cannot find it in the list of signatures.
[SID: 32329] Audit: Malicious Scan Attempt 2 attack detected but not blocked. Application path: SYSTEM