Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Mobile Endpoint Security

Mobile Endpoint Security Contents

MES Console

Small and Medium Business Solutions (SMB)

Lookout for Work

MDMs

SIEM Integrations

Partner and Mobile Risk APIs

Mobile Risk API

Mobile Risk API Event Reference

Threat Event Fields

Network Threat Detail Fields

NETWORK Threat Classifications


Classification	Description
`ACTIVE_MITM`	An active Man-in-the-Middle attack is occurring on the device.
`GATEWAY_ADDRESS_CHANGE`	The resolved hardware address of the gateway has changed, indicating a potential ARP spoofing attempt.
`PORT_SCAN`	Lookout has detected a port scan or an ICMP redirect.
`ROGUE_WIFI`	The device is connected to a rogue Wi-Fi network.

Last updated: September 30, 2024

lookout-footer

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.