Update rules/linux/privilege_escalation_mount_launched_inside_container.toml

Aegrah · imays11 · web-flow · commit 83a1ec860709 · 2025-03-13T09:14:00.000+01:00
Co-authored-by: Isai &lt;59296946+imays11@users.noreply.github.com&gt;
diff --git a/rules/linux/privilege_escalation_mount_launched_inside_container.toml b/rules/linux/privilege_escalation_mount_launched_inside_container.toml
@@ -7,7 +7,7 @@ updated_date = "2025/03/12"
 [rule]
 author = ["Elastic"]
 description = """
-This rule detects the use of the mount utility from inside a privileged container. The mount command is used to make a
+This rule detects the use of the mount utility from inside a container. The mount command is used to make a
 device or file system accessible to the system, and then to connect its root directory to a specified mount point on the
 local file system. When launched inside a privileged container--a container deployed with all the capabilities of the
 host machine-- an attacker can access sensitive host level files which could be used for further privilege escalation
