Selecting the action to take on detection of external encryption of shared folders

To select the action to take on detection of external encryption of shared folders:

  1. In the lower part of the main application window, click the icon_settings button.
  2. In the application settings window, select ProtectionAdvanced Threat ProtectionBehavior Detection.
  3. Select the relevant action in the Protection of shared folders against external encryption block:
    • Block connection for N min. If this option is selected and Kaspersky Endpoint Security detects an attempt to modify files in shared folders, it takes the following actions:
      • Blocks network activity of the computer attempting the modification.
      • Creates backup copies of files that are being modified.
      • Adds an entry to local application interface reports.
      • Sends information about the detected malicious activity to Kaspersky Security Center.

      Also, if the Remediation Engine component is enabled, the modified files are restored from backup copies.

    • Inform. If this option is selected and Kaspersky Endpoint Security detects an attempt to modify files in shared folders, it takes the following actions:
      • Adds an entry to local application interface reports.
      • Adds an entry to the list of active threats.
      • Sends information about the detected malicious activity to Kaspersky Security Center.
  4. Save your changes.
Page top