The Umbrella User Guide Developer Hub

Welcome to the Umbrella User Guide developer hub. You'll find comprehensive guides and documentation to help you start working with Umbrella User Guide as quickly as possible, as well as support if you get stuck. Let's jump right in!

Get Started    

Cloud Malware Report

The Cloud Malware Report provides an overview of malicious files within your environment in addition to the potential risk and exposure these files present. For setup instructions, see Set Up Cloud Malware Platforms.

Table of Contents

View the Cloud Malware Report

  1. Navigate to Reporting > Additional Reports > Cloud Malware.
  1. View the report's overview of information about the malicious files in your organization.
  • Total files scanned—The total number of files in the organization scanned for potential malware. This will also show a status as to whether the scan is complete or in progress.
  • Platforms—The platforms where malicious files were found.
  • Malware found—The total number of files found deemed malicious.
  • Users with malware—The number of users in your environment whose files contain malware.
  1. Filter by platform(s).
    The platforms available for Cloud Malware are Box, Dropbox, Webex Teams, and Office 365. You can filter your malicious files' results by selecting any or all of the platforms licensed in your environment.
  1. Filter by exposure
    You can filter your malicious files by the type of exposure they pose to the environment. By default, none are selected so all exposure types are presented.
  1. Filter by status
    Each file displays a status depending on whether it is newly discovered, a quarantine is in progress or failed, or if the file was successfully quarantined or deleted.
  1. Optionally, you can choose to view Suspect Files.
    Suspect files are potentially unwanted or archived files.
  1. Sort columns by detection or status.

Click the settings menu icon to select which columns to display and organize them as you choose.

'

Use the Cloud Malware Report

Quarantine a Malicious File

On the Box, DropBox, and O365 platforms, when a malicious file presents a potential risk and needs remediation, you can quarantine the file to a folder in the platform's integration user's account. Only the integration user for the platform will have access to the files within that folder.

  1. Click the Action Menu to the right of the file that needs to be quarantined, then select Quarantine.
  1. A modal appears to verify if this is the file to be quarantined. Click Quarantine. The status will update in the report to Quarantine in Progress while the quarantine is processing. This process can take up to five minutes.

Delete a Malicious File

On the Webex Teams platform, when a malicious file presents a potential risk and needs remediation, you can delete the file.

  1. Click the Action Menu to the right of the file that needs to be quarantined, then select Delete.
  1. A modal appears to verify if this is the file to be deleted. Click Delete. The report status is updated to Deleted.

Dismiss an Item from the Report

When a reported file is found to not to present any risk, you can dismiss the file from the report.

  1. Click the Action Menu to the right of the file that needs to be removed from the report, then select Dismiss.
  1. A modal appears to verify if this is the file to be dismissed. Click OK. The file is removed from the report.

Export a Cloud Malware Report

You can export your Cloud Malware report to a CSV file for your records.

  1. From the top of the report, click Download.
  2. Give your report a title and click Export.
    Note: Data is limited to 1,000,000 rows when exporting to CSV.
  1. When you click Export, you are taken to the Exported Reports page. Click the download icon in the download column to download the CSV file.

More Information

To find the Cloud Malware Report, navigate to Reporting > Additional Reports > Cloud Malware. For setup instructions, see Set Up Cloud Malware Platforms.


Admin Audit Log Report < Cloud Malware Report > Data Loss Prevention Report

Updated 19 days ago

Cloud Malware Report


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.