I think its based on the same logic as Forensic Snapshot which is also part of Automated Actions. The automated actions will fire up based on the fact if the machine is compromised or not there is few other things in to that but the main part is bein...

As I promised here is update:   Talos has analyzed the file and deemed it benign. We have rectified the issue by changing the file disposition in Cisco Secure Endpoint. This update should be reflected in the next 1-2 hours. Since the update was about...

Hi,   Just quick update on this one. TAC also opened internal ticket with TALOS. The file in question was also provided :https://the.earth.li/~sgtatham/putty/0.73/w64/putty-64bit-0.73-installer.msiWill update this thread once we hear back from our te...

Well everything you need was in my previous post. The latest definition are listed in your AMP Console in the first two pictures. The third picture is your on-perm Tetra server directory where new definitions are being uploaded. The older one will be...

Hi,   Yes you can. Few places in AMP Console.   #1: You can go to your Management --- >  Computes expand one of your endpoints and once you hover over daily version pop-up will show up showing you the latest version available     #2: You can navigat...