Operation Center
Use this page to view malware that has been detected and its status from a security update perspective.
When a dynamic signature is sent back to FortiGate, FortiMail, or FortiClient, check the status information that it has been done.
When a new antivirus update is received, FortiSandbox rechecks all samples not covered by the standard antivirus package and update its status. Malware detected by FortiSandbox before an antivirus signature is available is marked as Zero-day.
The following options are available:
This page displays the following information:
Severity |
The severity rating of the malware, including:
If a file is detected by FortiSandbox first before an antivirus signature is available, the Severity level is Zero-day. |
Source |
IP address of the client that downloaded the malware. Use the column filter to sort the entries. |
Incident Time |
Date and time the file was received by FortiSandbox. Use the column filter to sort the entries. |
Threat Name |
Name of the virus. Use the column filter to sort the entries. If the virus name is not available, the malware's Severity is used as its Threat Name. |
Action |
Current action applied to the malware. Use this field to track responses to the incident, including:
|
To view file details:
- Select a file.
- Click the View Details icon to open a new tab.
For descriptions of the View Details page, see Appendix A - View Details page reference.