Intrusion Prevention

MySQL.Login.Brute.Force

Description

This indicates a detection of at least 60 failed MySQL logins in one minute which indicate a possible MySQL logins brute force attack.

Affected Products

Any MySQL server

Impact

Impact of a successful attack could vary, with the worse case being a system compromise.

Recommended Actions

Adjust the threshold to your network.
Monitor the traffic from that network for any suspicious activity.

CVE References

CVE-2012-2122