diff --git a/pkg/appsec/eval_penalty_box_test.go b/pkg/appsec/eval_penalty_box_test.go
index 3d2ee27c..8bb0fea8 100644
--- a/pkg/appsec/eval_penalty_box_test.go
+++ b/pkg/appsec/eval_penalty_box_test.go
@@ -110,7 +110,7 @@ func TestAppSec_UpdateEvalPenaltyBox(t *testing.T) {
 				ConfigID:             43253,
 				Version:              15,
 				PolicyID:             "AAAA_81230",
-				PenaltyBoxProtection: true,
+				PenaltyBoxProtection: false,
 				Action:               string(ActionTypeDeny),
 			},
 			headers: http.Header{
diff --git a/pkg/appsec/penalty_box.go b/pkg/appsec/penalty_box.go
index f97f2c21..53111b12 100644
--- a/pkg/appsec/penalty_box.go
+++ b/pkg/appsec/penalty_box.go
@@ -96,10 +96,9 @@ func (v GetPenaltyBoxesRequest) Validate() error {
 // Validate validates an UpdatePenaltyBoxRequest.
 func (v UpdatePenaltyBoxRequest) Validate() error {
 	return validation.Errors{
-		"ConfigID":             validation.Validate(v.ConfigID, validation.Required),
-		"Version":              validation.Validate(v.Version, validation.Required),
-		"PolicyID":             validation.Validate(v.PolicyID, validation.Required),
-		"PenaltyBoxProtection": validation.Validate(v.PenaltyBoxProtection, validation.Required),
+		"ConfigID": validation.Validate(v.ConfigID, validation.Required),
+		"Version":  validation.Validate(v.Version, validation.Required),
+		"PolicyID": validation.Validate(v.PolicyID, validation.Required),
 		"Action": validation.Validate(v.Action, validation.Required, validation.In(string(ActionTypeAlert), string(ActionTypeDeny), string(ActionTypeNone)).Error(
 			fmt.Sprintf("value '%s' is invalid. Must be one of: 'alert', 'deny' or 'none'", v.Action))),
 	}.Filter()