SOC Experts Community - Beta
1 like 0 dislike
in Use Cases by (1.2k points)

1 Answer

1 like 0 dislike
Malware can be detected by Av ( Antivirus) which we are using we would get alerts if we have written rule to trigger when malware detected by Av . It can be already deleted or quarantined .

We use siem where if the malware or virus is quarantined and when if it isn't cleaned .

We can manually remove the payload from the given source information in safe mode .

SOC Experts - No. 1 Job Oriented Cybersecurity Training Program

View our Courses