Environment
- Carbon Black Cloud Console: Alerts page
Question
What is the difference between Threat and Observed Alerts?
Answer
- Threat Alerts are highly likely to be malicious based on our Analytics
- Observed Alerts are behaviors which may be useful for conducting investigations but not clearly malicious from gathered data
Related Content
