deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-21 13:23:36 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Updated investigate-incidents-windows-defender-advanced-threat-protection.md

Browse Source
This commit is contained in:
Dolcita Montemayor
2018-09-19 11:28:49 +00:00
parent 16ba22144c
commit 658e15166d
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
windows/security/threat-protection/windows-defender-atp/investigate-incidents-windows-defender-advanced-threat-protection.md
View File

@ -30,7 +30,7 @@ Click an incident to see the **Incident pane**. Select **Open incident page** to
### Alerts ### Alerts
You can investigate the alerts and see how they were linked together in the incident. You can investigate the alerts and see how they were linked together in the incident.
Alerts are grouped into incidents based on the following reasons: Alerts are grouped into incidents based on the following reasons:
- Automated investigation - The automated investigation trigerred the linked alert while investigating the original alert - Automated investigation - The automated investigation triggered the linked alert while investigating the original alert
- File characteristics - The files associated with the alert have similar characteristics - File characteristics - The files associated with the alert have similar characteristics
- Manual association - A user manually linked the alerts - Manual association - A user manually linked the alerts
- Proximate time - The alerts were triggered on the same machine within a certain timeframe - Proximate time - The alerts were triggered on the same machine within a certain timeframe