Environment
- Managed Detection (Formerly CB ThreatSight)
- Carbon Black Cloud Console: All Supported Versions
- Endpoint Standard (Formerly CB Defense)
- Enterprise EDR (Formerly CB ThreatHunter)
Question
What alert severities are analyzed and reported on by the CB ThreatSight team?
Answer
Alerts with a Severity Score of 5 or Greater
Additional Notes
- Any severities from 4 and below are not a focus for the Managed Detection team.
- Alerts generated by Enterprise EDR Watchlists are not available to the Managed Detection team.
- If an alert is considered a false positive then this is not sent to the customer.
Related Content