Incident Handling
An event
is an action occurring in a system or network.
Examples of events are:
A user sending an email
A mouse click
A firewall allowing a connection request
An incident
is an event with a negative consequence.
IT security incident is an event with a clear intent to cause harm that is performed against a computer system.
Examples of incidents are:
Data theft
Funds theft
Unauthorized access to data
Installation and usage of malware and remote access tools
Last updated