diff --git a/CHANGELOG.md b/CHANGELOG.md
index ece949b93..23cb01864 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -23,7 +23,7 @@ from version 0.14.0.
 * Elastic EQL backend
 * Additional conversion selection filters
 * Filter negation
-* Specifiy table in SQL backend
+* Specify table in SQL backend
 * Generic registry event log source
 * Chronicle backend
 
diff --git a/rules/cloud/gworkspace/gworkspace_granted_domain_api_access.yml b/rules/cloud/gworkspace/gworkspace_granted_domain_api_access.yml
index e1602e388..0b09904be 100644
--- a/rules/cloud/gworkspace/gworkspace_granted_domain_api_access.yml
+++ b/rules/cloud/gworkspace/gworkspace_granted_domain_api_access.yml
@@ -17,7 +17,7 @@ detection:
 level: medium
 tags:
     - attack.persistence
-    - atack.t1098
+    - attack.t1098
 falsepositives:
  - Unknown
  
diff --git a/rules/cloud/m365/microsoft365_logon_from_risky_ip_address.yml b/rules/cloud/m365/microsoft365_logon_from_risky_ip_address.yml
index 55d1b4050..b71a4344b 100644
--- a/rules/cloud/m365/microsoft365_logon_from_risky_ip_address.yml
+++ b/rules/cloud/m365/microsoft365_logon_from_risky_ip_address.yml
@@ -17,7 +17,7 @@ detection:
         status: success
     condition: selection
 falsepositives:
-    - Unkown
+    - Unknown
 level: medium
 tags:
     - attack.initial_access