File Security

The File Security dashboard shows an overview of threat prevention events related to file security in the selected products.

Currently, the dashboard displays threat prevention events for:

  • Smart-1 Cloud

  • Harmony Endpoint

  • Harmony Email & Collaboration

You can view the combined threat prevention events data for all products or for selected ones.

To view the File Security dashboard:

  1. Access the Infinity Events Administrator Portal.

  2. Go to Threat Prevention > File Security.

By default, the dashboard displays the overview for the last seven days. You can filter the page for these time periods:

  • Last 24 hours

  • Last 7 days

  • Last 30 days

File Security - General

The General widget shows the total number of file security threat prevention events in the selected time-range and selected products.

To view logs, click the count in the respective category.

Threat Emulation

The Threat Emulation widget shows the total number of threat prevention events processed by the Threat Emulation service.

To view logs, click the count in the respective category.

Top Malicious File Types

The Top malicious file types widget shows the top six file types base on the number of threat prevention events.

To view logs for each file type, click the respective type on the pie chart.

Attacks Severity

The Attacks severity widget shows the distribution of threat prevention events based on the severity level.

To view logs of each severity, click the respective severity on the pie chart.

Attacks Timeline

The Attacks Timeline widget shows the trend of threat prevention events in the selected time period.

Top Malware Families

The Top malware families widget shows the top five malware families based on the number of threat prevention events.

To view logs for a malware family, click the blue bar.

Top Malicious Files

The Top malicious files widget shows the top 10 malicious files based on the number of prevention events.

Item

Description

File name

Name of the file.

File type

Type of the file.

Severity

Severity level of the file for the action taken (Detect/Block)

Note - When there are multiple severity levels for a file, the severity level with the higher number of events is listed first.

Action

Action taken for the event:

  • Detect

  • Block

Note - When both Detect and Block actions are present, the action with the higher number of events is listed first.

To view event details for a file, click the file row.

File Security - ThreatCloud AI Global Insights

The ThreatCloud AI global insights widget shows global insights related to file security from the ThreatCloud AI. It includes:

  • Global statistics of scanned files.

  • Global statistics of malicious files, including email attachments and files downloaded from the web.

  • Percentage of zero-day catch for malicious files.

  • Global statistics of top malicious file types.

  • Monthly rankings of the top malware threats.