Dec 30 2019 10:32 AM
Hi All,
Assuming that I have enabled all the features/capabilities of WD ATP and received and infected file, in which order do we examine the file? i.e. do we detect first with antivirus then check attack surface reduction if we have both enabled? Just trying to understand the flow through the different features when all are enabled, which one do we start with and why?
Thanks!
May 19 2020 12:27 AM
@abeerq Enable automatic investigation and it should take care of most of the steps