Finding Malware Attacks via Advanced Threat Detection
This example shows how to use the Advanced Threat Detection to detect the malicious behavior and recognise the APT attacks, thus find malware earlier and stop the spread of its in internal network .
As shown in the topology, the device is deployed in the data center exit. After enable and configure the Advanced Threat Detection, when a internal host is infected by Trojan attacks, the administrator can find and solve this attack.
* To use Advanced Threat Detection, apply and install the StoneShield license.
|Step 3: Mark the threat status|
In Detail dialog, click , and select the status of threat in the Admin Analysis dialog.
When the threat entry status is Fixed , it will not participate in the 'Network Risk Index' score.