Box malicious file detected

This rule is part of a beta feature. To learn more, contact Support.

Classification:

attack

Tactic:

Technique:

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Goal

Detects when Box identifies a file containing malware, indicating a potential threat to users or shared content.

Monitor security events where a file uploaded to Box is flagged as malicious to prevent distribution of infected content.

Review the user {{@usr.email}} who uploaded the malicious file.
Note the file name {{@source.item_name}} to assess its context, location, and sharing status.
Quarantine or delete the malicious file and notify involved users.
Review user activity and scan associated files for additional threats.