Whenever a threat occurs, it depends on whether the security company used recognizes the danger or not. If only a single vendor is used and there is no detection, the attack is successful and damage occurs. If, on the other hand, several providers are combined, missing identifications can be compensated by the others. The effect of collective defence is therefore an optimization of threat detection, because this is available as soon as a single provider detects the threat. In addition, depending on the number of vendors reporting a threat, different actions can be started to prevent negative effects from false alarms.