Hi, 

So we hace around 500 monitors running and I notice my team completely ignores the 'confirmed anomaly' dashboard and the all anomaly control, which, I think is very important. I did a deep dive into 43 reported anomalies out of 69 in 1 day and all are false positive. Site 24x7 keeps reporting traffic spikes (bytes sent or received) and cpu spikes based on BASELINES. While this is similar to what I reported on www.site24x7.com/community/cloudfront-monitoring-ia-thresdhold-not-useful%2C there's something very specific: not all production environments are the same and people sleeps! :)

We do newspapers and eCommerce, most of the traffic is between 10am and 10pm. Within than range, you also have peak hours, most likely around 12pm and 6pm. We you build a baseline considering the 24 hours, is going to be wrong. 

I'm not sure if this is the actual problem the cases all the false positives, but I think for most production environments you should consider difference baselines and different anomaly %.