diff --git a/flowmon-ads/warden3_flowmon_ads_filer.py b/flowmon-ads/warden3_flowmon_ads_filer.py
index 6b518a4fd5978f6b55dcbb6da5e0d8105303bf46..d82d697eeef99488f0e200fe127004c1b242cd0e 100755
--- a/flowmon-ads/warden3_flowmon_ads_filer.py
+++ b/flowmon-ads/warden3_flowmon_ads_filer.py
@@ -128,7 +128,7 @@ ads_types = {
     "ANOMALY": ["Anomaly.Behaviour"],
     "BLACKLIST": ["Other"],     # FIXME - will need to be set based on other data?
     "BPATTERNS": ["Attempt.Exploit"],   # FIXME - will need to be set based on other data?
-    "DNSANOMALY": ["information.UnauthorizedAccess"],
+    "DNSANOMALY": ["Information.UnauthorizedAccess"],
     "DNSQUERY": ["Anomaly.Traffic"],
     "DOS": ["Availability.DoS"],
     "GEODIST": ["Anomaly.Behaviour"],