Det kan være en fordel at Whiteliste en producent af software hvis man har tillid til dem F.esk Synology
Start med at finde “Signer Identity “
Threat Info:
Name: Synology Active Backup for Business Agent-2.3.0-2153-x64 (1).msi
URL: https://euce1-swprd2.sentinelone.net/incidents/threats/1391146717102779264/overview
Path: \Device\HarddiskVolume4\Users\kj\Desktop\Synology Active Backup for Business Agent-2.3.0-2153-x64 (1).msi
Command Line Arguments: /i "C:\Users\kj\Desktop\Synology Active Backup for Business Agent-2.3.0-2153-x64 (1).msi"
Process User: KELD-P51-LAPTOP\kj
Publisher Name: SYNOLOGY INC.
Signer Identity:
Threat Info:
Name: Synology Active Backup for Business Agent-2.3.0-2153-x64 (1).msi
URL: https://euce1-swprd2.sentinelone.net/incidents/threats/1391146717102779264/overview
Path: \Device\HarddiskVolume4\Users\kj\Desktop\Synology Active Backup for Business Agent-2.3.0-2153-x64 (1).msi
Command Line Arguments: /i "C:\Users\kj\Desktop\Synology Active Backup for Business Agent-2.3.0-2153-x64 (1).msi"
Process User:
Publisher Name: SYNOLOGY INC.
Signer Identity: SYNOLOGY INC.
Signature Verification: SignedVerified
Originating Process: explorer.exe
SHA1: aa62ff787cb9c6042abe56be604253dbe4c3df3c
Initiated By: Agent Policy
Engine: Behavioral AI
Gå til profilen for kunden og opret en exclusions. Sådan ser billedet ud
White list i EDR sentinel one med certifikat
Det kan være en fordel at Whiteliste en producent af software hvis man har tillid til dem F.esk Synology
Start med at finde “Signer Identity “
Gå til profilen for kunden og opret en exclusions. Sådan ser billedet ud
Arkiver
Kategorier
Tags
Kalender