• Data Loss Prevention Policies - How to configure alerts to not generate a new alert for the same event in specified amount of time
    Ugo Marzola
    Hello everyone, I have configured DLP policies for one of our clients, they work as expected. There is just one remark our client gave us : Sometimes if a user does the same action repeateadly, generating...
  • INTERCEPT X DETECTIONS
    Ahmed Khalil Abidi
    (Browser-Specific): Threat Protection policies only detects malwares in Firefox when accessing the eicar website but failed to detect it using Chrome. also, what is this behavior, it keeps detecting...
  • Port scan detection internal network
    @wajdiaa
    Hi, Is there any option to detect internal network port scans from within the network or networks? Like for example using nmap or netcat or others from inside the local network, not from a wan source...
  • About C2_10a (T1071.001) Detected on the server
    ongļ¼ L
    Endpoint appears as malicious behavior, but shouldn't detecting c2 be the purview of IPS? Why is it showing malicious behavior? Or is the ips module already involved?
  • Alert - WIN-INI-PRC-VEEAM-BACKUP-SUSP-CHILD-PROCESS-1
    Gleison Lichtenfels
    Hello everyone, Is anyone else getting "High-Risk" detections " WIN-INI-PRC-VEEAM-BACKUP-SUSP-CHILD-PROCESS-1 " from Veeam Backup and Replication? Parent Command Line: "C:\Program Files\Veeam...