Account lockouts can indeed be a security indicator, reflecting that there could be an attempted breach, such as a password guessing attack. However, on their own, they are not sufficient to confirm a security incident. Account lockouts could also result from legitimate users forgetting their passwords or input errors. Additional investigation and corroboration with other indicators are necessary to confirm an incident has indeed occurred. It is crucial for security professionals not to jump to conclusions based on a single indicator without further analysis.