Global Intelligence and Virtual Analyzer C&C server lists

OfficeScan can automatically detect any known C&C server through use of the Trend Micro Smart Protection Network Global Intelligence list. Web Reputation Services checks all URLs against both the traditional malicious list, and the new Global Intelligence C&C server list.

Administrators that have integrated a Smart Protection Server with Deep Discovery Advisor can also check the risk level of suspicious network connections using the Virtual Analyzer C&C server list. The Virtual Analyzer generates this list based on data received from connected Trend Micro products ensuring very company-specific protection.

For details, see Command & Control Contact Alert Services.

C&C IP list

The C&C IP list works in conjunction with the Network Content Inspection Engine (NCIE) to detect network connections with known C&C servers. NCIE detects C&C server contact through any network channel.

For details, see Command & Control Contact Alert Services.

Notifications for administrators and users

OfficeScan C&C Contact Alert Services provides standard and outbreak notifications that keep administrators and users informed about any known or potential advanced persistent threat or C&C callbacks originating from the network.

C&C Callback Events widget

The C&C Callback Events widget provides administrators with a quick view of all callbacks from the network, the targets of the attacks, the risk level of the attack, and the callback address.

For details, see C&C Callback Events Widget.