diff --git a/modules/signatures/windows/discovery_mountpoints.py b/modules/signatures/windows/discovery_mountpoints.py
index 29ca049a..dac31a55 100644
--- a/modules/signatures/windows/discovery_mountpoints.py
+++ b/modules/signatures/windows/discovery_mountpoints.py
@@ -20,6 +20,7 @@ class DiscoverRegistryMountPoints(Signature):
     name = "discover_registry_mount_points"
     description = "Queries registry mount points to identify historical or connected removable/network drives"
     severity = 2
+    confidence = 20
     categories = ["discovery", "ransomware", "wiper"]
     authors = ["Kevin Ross"]
     ttps = ["T1082", "T1120"]
@@ -50,8 +51,8 @@ def run(self):
 class MountPointsVolumeDiscovery(Signature):
     name = "mountpoints_volume_discovery"
     description = "Queries the mount points and then resolves volume paths to enumerate storage devices"
-    severity = 3
-    confidence = 80
+    severity = 2
+    confidence = 20
     categories = ["discovery", "ransomware", "wiper"]
     authors = ["Kevin Ross"]
     minimum = "1.3"