Display Incident Type in Incidents Dashboard
Z
Zac Mazza
When viewing the incidents dashboard it would be helpful to see the type of incident being reported without having to click into it. With the recent feature launch to identify users using plaintext solutions for storing passwords a large number of incidents have been opened. We're working through remediations now, but until then it's difficult to tell which are related to an actual incident and which are related to this new feature.
Would recommend adding a new category to reflect the incident type:
Plain Text Password Use
Malware
RAT
Adware
etc.
Patrick Sofo [Security Product Manager]
Merged in a post:
Provide High Level Overview of Incident Type in Incidents Dashboard
Z
Zac Mazza
With the addition of new 'password-related' LOW severity incidents, it's become difficult to filter incidents without clicking through each one. Given password-related incidents can be longer lived while we switch associates to appropriate tooling, it creates distractions in the dashboard that make responding to actual incidents more challenging.
I would recommend placing an 'incident type' column on the dashboard in order to quickly see the type of incident - Plain Text Passwords, Malware, Trojan, etc.
Patrick Sofo [Security Product Manager]
Merged in a post:
Update title for potentially unsecured credential reports
E
Emma Santiago
Differentiating what is actually a low-level incident and what is a signal detection for easier parsing reports the PSA. Example below:
LOW - Incident on <hostname> (<org>)
LOW - Signal on <hostname> (<org>)