Hi,
I am not sure whether or not this is the appropriate location to ask questions about AMP but, I was wondering when would the "Simple Detection" feature ever be useful if AMP already knows a specified SHA is malicious.
Would it be useful to turn it on when AMP tries to quarantine a malicious SHA but it can't ? or would it not really make a difference at all?
Let me know in the comments below,
Many Thanks!