What constitutes a cyber incident in the context of service delivery?

A cyber incident in the context of service delivery typically refers to any event that compromises the integrity, availability, or confidentiality of a system. Denial of service attacks fit this definition perfectly, as these attacks are targeted attempts to disrupt the normal functioning of a service by overwhelming it with excessive traffic or requests. This not only affects service availability for users but can also lead to broader implications, such as loss of data or reputational damage for the organization.

In contrast, minor software glitches, hardware upgrades, and routine system updates are generally part of regular system maintenance and do not represent cyber incidents. While minor glitches may cause temporary issues, they don’t stem from malicious intent. Hardware upgrades are necessary for improving system performance and security, while routine updates are standard procedures to patch vulnerabilities and enhance system security. None of these activities typically indicate a malicious attack or an intentional compromise, which is a key aspect in defining a cyber incident.