Ransomware Incident detail

SECURITY  Administrators

NAVIGATION   Access the client's File Protection Online > Team > Security > click ransomware incident

NOTE  File Protection Ransomware Detection & Management is supported on File Protection Server and File Protection Desktop for Windows and Mac 7.4 or later, but we recommend that you use the most recent versions to enjoy the best possible user experience.

The Incident Detail provides all the information and management tools you need to handle team ransomware incidents detected by File Protection.

IMPORTANT  This feature is designed to prevent ransomware-encrypted files from being backed up and to minimize the time it takes to revert to your last known-good backup set. If you have a confirmed ransomware incident, we recommend that you revert the affected files, recycle the device via File Protection, completely uninstall File Protection from the device (refer to Install or uninstall File Protection Desktop), scrub the device of all malware, reinstall File Protection, and restore the files from the service.

On this page, you can review incident details, confirm or ignore the incident, generate a report, track the incident through its lifecycle, revert affected files and export relevant information about them, review the status of affected devices, and drill to the Device Detail page for each device.

This page is comprised of four sections: Incident summary, Incident details, and(Revert) Affected Files

NOTE  Some sections will be expanded or collapsed by default, depending on the current status of the incident.

How to...