SOC Experts Community - Beta
0 like 0 dislike
in SOC by (1.2k points)
The organisation as said there is an suspicious event as be occured,ones u start investing will come to know there's no such suspicious activity is going on and hence termed as false positive

3 Answers

0 like 0 dislike
by (5.9k points)
False positive is an error in some evaluation process in which a condition tested for is mistakenly found to have been detected.
0 like 0 dislike
by (580 points)
False positive :

It's means that you get a warning and after verification you find the alert is incorrect

Example :

You get an alert that there are attacks on facility and after the verification you find there are no real attack on facility
0 like 0 dislike
by (5.4k points)
a false positive is like false alarm. it occurs when web application firewall or IPS indicates that there is a vulnerability, when in reality there is not.

SOC Experts - No. 1 Job Oriented Cybersecurity Training Program

View our Courses