diff --git a/detections/endpoint/detect_critical_alerts_from_security_tools.yml b/detections/endpoint/detect_critical_alerts_from_security_tools.yml
index 92e648ea73..1f4623df42 100644
--- a/detections/endpoint/detect_critical_alerts_from_security_tools.yml
+++ b/detections/endpoint/detect_critical_alerts_from_security_tools.yml
@@ -30,8 +30,8 @@ tags:
   - Critical Alerts
   asset_type: Endpoint
   atomic_guid: []
-  confidence: 50
-  impact: 1
+  confidence: 100
+  impact: 50
   message: $severity$ alert for $user$ from $sourcetype$ - $signature$
   mitre_attack_id: []
   observable: