FAQ: What are the severity levels?

The severity levels are Major, Minor and Warning, also identified as 1, 2 and 3. These levels are determined by the Security Operations Center (SOC) engineer who determines if the activity is normal or not. If there is serious concern, the security engineer will call the client and report the bad IP addresses — the source IP and the destination IP — and discuss remediation recommendations.

Examples of Major severity, or level 1, issues include a virus, a Trojan, a worm and a network attack.