Customers of Intercept X Advanced with EDR and Intercept X with EDR for Servers will see a new Threat Indicators feature available in their Central Threat Analysis Center.
Threat Indicators solves the #1 most requested feature for EDR users – knowing where to start an investigation. Now users will utilize a prioritized list of the most suspicious activity, so they know what needs to be investigated and how urgently it needs to be addressed. Users will see threats listed based on their risk level, when the file was first seen, how many machines are impacted, and whether the file has executed or not.
The list of suspicious activity is generated using cutting edge machine learning built by the SophosLabs Data Science team.
Learn more about Threat Indicators:
https://vimeo.com/348592836/530fd7b98a