Update rules/integrations/o365/credential_access_entra_id_potential_user_account_brute_force.toml

Co-authored-by: Isai <[email protected]>

Author: terrancedejesus

rules/integrations/o365/credential_access_entra_id_potential_user_account_brute_force.toml

@@ -24,7 +24,7 @@ license = "Elastic License v2"
 name = "M365 Identity User Brute Force Attempt"
 note = """## Triage and Analysis
 
-### Investigating M365 Identity User Brute Force Attempt
+### Investigating M365 Identity User Brute Force Attempted
 
 Identifies brute-force authentication activity targeting Microsoft 365 user accounts using failed sign-in patterns that match password spraying, credential stuffing, or password guessing behavior. Adversaries may attempt brute-force authentication with credentials obtained from previous breaches, leaks, marketplaces or guessable passwords.