General information about an alert of any type

The title of the alert details window displays the alert ID. The Apt_icon_VIPgroup or Apt_icon_VIPgroupKATA3 icon will be displayed next to the status depending on whether the alert has VIP status.

The upper part of the window containing alert information may display the following general information about the alert:

State—Alert status depending on whether or not this alert has been processed by the user of Kaspersky Anti Targeted Attack Platform.
Importance—Alert importance for the Kaspersky Anti Targeted Attack Platform user depending on the impact this alert may have on computer or corporate LAN security based on Kaspersky experience.
Server is the name of the server where the detection was generated. Servers belong to the organization you are managing in the application web interface. This column is displayed if you are using the distributed solution and multitenancy mode.
Operation mode in which Kaspersky Anti Targeted Attack Platform is used to protect the infrastructure of multiple organizations or branch offices of the same organization simultaneously.

Two-level hierarchy of servers with Central Node components installed. This hierarchy allocates a primary control server (Primary Central Node (PCN)) and secondary servers (Secondary Central Nodes (SCN)).
Host—Domain name of the computer where the alert occurred.
Data source—Source of the data. For example, SMTP Sensor or SPAN Sensor.
Time created is the time when the alert was created.
Time updated is the time when the alert details were updated.

You can configure email notifications about new alerts.