Our IDS alerted a network attack, Oracle WebLogic Deserialization (CVE-2018-2893), from an PC.
We wonder Sophos endpoint can find out the attack process or program in the PC?
Our IDS alerted a network attack, Oracle WebLogic Deserialization (CVE-2018-2893), from an PC.
We wonder Sophos endpoint can find out the attack process or program in the PC?
Thank you for reaching out to the community forum.
Can you confirm what Endpoint Subscription you're currently using on the device? With our Sophos IX advance with XDR, you can find the historical event via the threat analysts center.
