You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/defender-for-cloud/alerts-overview.md
+5-4Lines changed: 5 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -4,14 +4,15 @@ description: Learn how Microsoft Defender for Cloud generates security alerts an
4
4
ms.topic: conceptual
5
5
ms.author: benmansheim
6
6
author: bmansheim
7
-
ms.date: 11/09/2021
7
+
ms.date: 11/29/2022
8
+
ms.custom: fasttrack-edit
8
9
---
9
10
# Security alerts and incidents
10
11
11
12
This article describes security alerts and notifications in Microsoft Defender for Cloud.
12
13
13
14
## What are security alerts?
14
-
Security alerts are the notifications generated by Defender for Cloud and Defender for Cloud plans when threats in your cloud, hybrid, or on-premises environment.
15
+
Security alerts are the notifications generated by Defender for Cloud and Defender for Cloud plans when threats are identified in your cloud, hybrid, or on-premises environment.
15
16
16
17
- Security alerts are triggered by advanced detections in Defender for Cloud, and are available when you enable [enhanced security features](enhanced-security-features-overview.md).
17
18
- Each alert provides details of affected resources, issues, and remediation recommendations.
@@ -39,7 +40,7 @@ Defender for Cloud assigns a severity to alerts to help you prioritize how you a
39
40
40
41
**A security incident** is a collection of related alerts.
41
42
42
-
Incidents provide you with a single view of an attack and its related alerts, so that you can quickly understand actions an attacker took, and resources affected.
43
+
Incidents provide you with a single view of an attack and its related alerts, so that you can quickly understand the actions an attacker took, and the affected resources.
43
44
44
45
As the breath of threat coverage grows, so does the need to detect even the slightest compromise. It's challenging for security analysts to triage different alerts and identify an actual attack. By correlating alerts and low fidelity signals into security incidents, Defender for Cloud helps analysts cope with this alert fatigue.
45
46
@@ -116,4 +117,4 @@ In this article, you learned about the different types of alerts available in De
116
117
-[Security alerts in Azure Activity log](https://go.microsoft.com/fwlink/?linkid=2114113) - In addition to being available in the Azure portal or programmatically, Security alerts and incidents are audited as events in Azure Activity Log
117
118
-[Reference table of Defender for Cloud alerts](alerts-reference.md)
118
119
-[Respond to security alerts](managing-and-responding-alerts.md#respond-to-security-alerts)
119
-
- Learn how to [manage security incidents in Defender for Cloud](incidents.md).
120
+
- Learn how to [manage security incidents in Defender for Cloud](incidents.md).
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments