The Attack Overview tab displays a summary of information about the XDR Detection and Threat Detection risk factors.

The Attack Index reflects the risk level of the Attack Detection risk category, which is an indicator of the intensity of ongoing cyberattacks affecting your organization. The Attack Index is calculated based on the number of known detections, the number of impacted assets, and the severity of each unique threat type defined by threat experts. To lower your Attack Index, it is important to prioritize the mitigation of attack detections.
The Attack Index is calculated using all data received from your business without applying asset visibility scope limits.
The Attack Detection category includes the following risk factors:
  • XDR detection: Includes risk events related to Workbench alerts associated with your managed assets
  • Threat detection: Includes risk events related to threat detections on your managed assets
The following table outlines the Attack Overview widgets.
Attack Phase Overview
A representation of the attack phases that affected your organization and the overall severity of the attacks
Cyber threats
The highest intensity cyber threats that occurred in your organization
A high attack intensity only indicates the strength of the attacks and does not necessarily indicate that any damage occurred.
  • To filter out the most intensive threats that target your industry, enable the View top 3 industry threats toggle.
    Enabling the toggle:
    • Requires that you configure your industry and company size in your Company Profile
      Trend Vision One also uses the information for accurate organizational comparisons to global averages.
    • Automatically resets the attack phase evaluation period to Last 30 days
For customers that have updated to the Foundation Services release, drilling down from the Impact scope column is only available for users with the Accounts asset visibility scope.