Laserfiche WebLink
<br />©2025 Lumifi Cyber, Inc. All rights reserved. <br />PRIVATE - Controlled by Lumifi Cyber <br /> <br />16/18 <br />PRIVATE - Controlled by Lumifi Cyber <br />INCIDENT CLASSIFICATION FOR LUMIFI CYBER MDR <br />INCIDENT <br />SEVERITY <br /> <br />DESCRIPTION <br />URGENT <br />An urgent priority security incident is an event or set of events that is believed to present a <br />serious and immediate risk to Customer’s environment. LUMIFI will contact Customer (contact <br />on file) via phone and email to attempt resolution and execute any Rapid Quarantine actions <br />agreed in mutually agreed upon Playbook(s). Examples of urgent priority security incidents <br />include, but are not limited to: <br />• Suspected account compromise with account misuse observed <br />• Customer security device has alerted LUMIFI to a likely compromise that has been <br />verified using other MDR data/tools with no evidence the security device has mitigated <br />the incident <br />• Suspected malware infection with evidence of immediate business impact <br />• Communications observed with a suspected malicious host with evidence of data <br />exfiltration or immediate business impact <br />• Regulated data seen unencrypted going to an external destination <br />HIGH <br />A high priority security incident is an event or set of events that is believed to present a risk to <br />Customer’s environment. LUMIFI will contact Customer (contact on file) via phone and email to <br />attempt resolution and execute any Rapid Quarantine actions agreed in mutually agreed upon <br />Playbook(s). Examples of high priority security incidents include, but are not limited to: <br />• Suspected or potential account compromise with no misuse observed <br />• Suspected malware infection with evidence of malware spreading but no evidence of <br />immediate business impact <br />• Suspected or potential system compromise with no evidence of misuse <br />• Regulated data seen unencrypted between two internal hosts <br />MEDIUM <br />A medium priority security incident is an event or set of events that may be a risk to Customer’s <br />network environment and may inform future Customer actions. LUMIFI will contact Customer <br />(contact on file) via email to attempt resolution. Examples of medium priority security incidents <br />include, but are not limited to: <br />• Attempted account compromise with no evidence of success <br />• Suspected malware infection with no evidence of malware spread or immediate <br />business impact <br />LOW <br />A low priority security incident is an event or set of events that is not believed to represent a risk <br />to Customer’s network environment but does warrant immediate awareness and investigation. <br />LUMIFI will contact Customer (contact on file) via email to attempt resolution. Examples of low <br />priority security incidents include, but are not limited to: <br />• Potentially unwanted program observed <br />• Other issue that is not an immediate security threat observed <br /> <br /> <br /> <br />SERVICE LEVEL AGREEMENT <br />LUMIFI PRODUCT DESCRIPTION SERVICE LEVEL SLA CREDIT