Performing Remedial Actions on Messages Delivered to End Users When the Threat Verdict Changes to Malicious
A file can turn malicious anytime, even after it has reached user’s mailbox. AMP can identify this as new information emerges and push retrospective alerts to your appliance. With this release you get more than just alerting. If your organization is using Office 365 to manage mailboxes, you can configure your appliance to perform auto-remedial actions on the messages in user mailbox when the threat verdict changes. For example, you can configure your appliance to delete the message from the recipient’s mailbox when the verdict of the attachment changes from clean to malicious.