Endpoint Protection

There are 5 threat categories, ‘Very Severe’ to ‘Very Low.' Is there any detailed doc's explaining these categories in detail?

Thanks

I am assuming you are talking about a page like this http://www.symantec.com/security_response/writeup.jsp?docid=2009-050707-0639-99? Where it says Risk Level 2: Low. 

Well I am not sure there is any documentation on the specifics of what gives a virus a rating of low vs very low ect. At least not any publicly available ones. I know that it is based on quite a few categories such as:

1. Rate of spread
2. Intent of the virus ie) functionality of the virus
3. Percent infected
4. Ease of removal 

I know there have to be others but I think you get the general idea. Where you looking for more specific information? I can look into it a bit more if you would like me too : )

Thanks
Grant

Actually no. Maybe I need to get better at including more info. What I'm looking at is setting up filters for risk reporting. Currently I have SEP to report ALL risk events. What I want to do is filter out tracking cookie from emailnotification.

SEPM, Symantec Endpoint Protection Manager\Monitors\Notifications\Notification Conditions\Single Risk Event under, “What settings would you like for this notification?” There is "Risk severity" and 6 categories

Category 5 (Very Severe)
Category 4 (Severe) and above
Category 3 (Moderate) and above
Category 2 (Low) and above
Category 1 (Very Low) and above
Unknown

What I’m seeking is what these categories cover for reporting. Does this make sense?
 

Yes more information is always better : )

The two are actually related, but more information can be found here:
http://www.symantec.com/security_response/severityassessment.jsp

Here is also another thread that talks about this
https://www-secure.symantec.com/connect/forums/risk-types

Thanks,
Grant

Thanks Grant, this is exactly what i was looking for!