Central - Custom Dashboards - Sensor Location Of Detection Query

Question

Hi Sophos Community. 
 
 I've been toying with the new custom dashboards on Central. One widget I've added in is the "Sensor location of detection" item. 
 
 This (presumably) shows us that some of our devices are in places I would not expect them to me, i.e. other countries. 
 
 Is there a way to identify what these nodes are? Clicking on the blue marker on the map takes me the Threat Analysis Center with seemingly all my niodes, not filtered down by the blue marker I selected, which I anticipated would list the affected device in that unexpected country. 
 
 Is there a way to then find out what these devices are, in these foreign states? 
 
 Thanks

ptho · Accepted Answer

Hi Glenn, 
 Wasn't very clear, even from the documentation here: https://docs.sophos.com/central/customer/help/en-us/ManageYourProducts/ThreatAnalysisCenter/index.html#filter-detections but I've realised you need to hover over the blue location indicator on the Sensor Location map, note down the location name, i.e. London, then go to Detections in the TAC and set the Location filter there. 
 Thanks

Central - Custom Dashboards - Sensor Location Of Detection Query

Top Replies