Forum Discussion
How to Deal with Undetected Malware?
Hi, Anti-Malware products like Windows Defender are getting smarter and stronger and it is not easy to find malware which won't be detected by them. In case we face such a case, we will send them...
One thing is to have good security policies indeed.
Implement ASR and enable all rules in block mode.
Something is is to do proactive hunting. This is searching for attackers in your network without knowing for sure if they are there.
Check out this article for more info (it's from CrowdStrike, but it has some good information) https://www.crowdstrike.com/epp-101/threat-hunting/
Implement ASR and enable all rules in block mode.
Something is is to do proactive hunting. This is searching for attackers in your network without knowing for sure if they are there.
Check out this article for more info (it's from CrowdStrike, but it has some good information) https://www.crowdstrike.com/epp-101/threat-hunting/
Thank you Thijs Lecomte for links , they are very valuable.
I believe by proactive hunting you are referring to things like Honeypot.
