In the past week, I have received a plethera of alerts with this High Level title. After blacklisting the host IP it is back with a different one. I am starting to get concerned because the first IP address that was blacklisted was a hacker.
Can someone tell me if this is a false positive or not?
Or, what is actually setting this sensor off?