Glossary

The glossary below contains many of the terms you will find in common use throughout the Symantec Security Response website. Please refer to this list to find definitions of terms and answers to other Internet security-related questions.

Security Incident

A collection of device logs and data that has been identified by the STP to match a pattern that indicates potential weakness or compromise in the customer’s system. For a security incident to appear on the SII, it must be reviewed, categorized, and confirmed by a human analyst; these confirmed incidents appear in reports and statistics as "Validated Incidents." Each validated security incident is assigned a severity, which, along with comments entered by the analyst, can help you determine what actions, if any, should be taken to protect the network and/or prevent further compromise.