A list of terms used in F-Secure Elements Endpoint Detection and Response.
- Anomaly
- A new, previously unidentified event or a sequence of events that most likely result from malicious activities.
- Broad context detection
- F-Secure Elements Endpoint Detection and Response uses real-time behavioral, reputational, and big data analysis with machine learning to collect multiple detections that can be tied together, for example based on the process ID or some other lead.
Broad context detections show only relevant detections and their criticality by combining risk levels, information about affected hosts, and the prevailing threat landscape. - Detections
- Process of detecting anomalies from customer systems.
- Event
- Monitored event that the sensor has detected that matches with the definition of a detection.
- Harmful content
- Harmful applications and files can try to damage data or gain unauthorized access to devices to steal private information.
- Host
- A device that runs a sensor and which is monitored by the system.
- Incident
- See Broad context detection
- Risk
- The meaningfulness of an incident in relation to the monitored company and host.
- Sensor
- Software that runs on monitored devices (hosts). The sensor monitors the device status and communicates with F-Secure Elements Endpoint Detection and Response backend.
- Suspicious event
- A new event or a sequence of events that have not been seen before. These events are most likely malicious and require further analysis.
- Unwanted application
- An application that can compromise privacy or has a severe impact on the computer’s security.
Source : Official F-Secure Brand
Editor by : BEST Antivirus KBS Team
(Visited 17 times, 1 visits today)