Perhaps one of you may be able to provide some clarity in regard to a Symantec Datasets – Lookup.
In my environment, the symantec_ep_malware_category_lookup contains 18,169 results. This lookup contains a handful of fields, the field in question is: riskLevel. The 18,169 results are divided into three levels: Low, Very Low, and Moderate.
The question: Why are there no results with a riskLevel of High, Very High, or Critical? I am misunderstanding the idea of this lookup?
Question 2: Anyone able to point me to documentation where I can better research for myself?