To see the huge changes, simply hit "view all definitions sets by month" @ this https://www.symantec.com/security_response/definitions/certified/ page.

(Needless to explain, Heur here means Heuristic. E.G., this SONAR.Heur.C!g1)

SONAR.Heur.C!g1 is a heuristic detection for suspicious processes based on certain attributes and behaviors.

This is cool news, for badware researchers, and product testers. See related info:

• https://community.norton.com/en/forums/norton-sds-definitions-2 (Norton SDS (aka, Static Data Scanner) Definitions; official document not found yet)
• https://community.norton.com/en/forums/norton-sds-definitions
• https://www.symantec.com/security_response/sape/

The rise of false detection could be "expected", as well.

Wait... and see, and keep up with the new BETA engine.

What do you think of the worst disadvantage of traditional virus database, cloud based/ powered protection?