Notifications_Known_Security_Risks

Threshold-based Notification for Known Security Risks

Threat Discovery Appliance can send an email when it detects known security risks. Use the Known Security Risk Notifications screen to configure the notifications sent to the designated individuals.

To configure notifications for detection of known security risks:

• Notifications > Notification Settings > Detection of Known Security Risks

1. Select Notify administrator.

2. Under Notify if number of detections for, configure the number of detections which triggers an alert for the following types of logs:

• Outbound traffic means detections from monitored networks

• Inbound traffic means detections from outside the network

3. Specify the number of hours or minutes within which Threat Discovery Appliance must detect the specified number of log records.

• Trend Micro recommends using the default settings.

4. Under Detect the following, select which security risks would trigger the notification.

5. Click Save.

To disable notifications:

• Notifications > Notification Settings > Detection of Known Security Risks

1. Clear Notify administrator.

2. Click Save.

See also:

• Notifications

• Threshold-based Notification for Potential Security Risks

• Threshold-based Notification for High Risk Clients

• Threshold-based Notification for High Network Traffic Usage

• Detection Logs