Hello Everyone,
We've got Q-radar showing the following SCEP terms inside the payloads:
ClassificationCategory: "Virus"
RemediationType: "NoAction"
RemediationResult: "True"
RemediationErrorCode: "0"
RemediationPendingAction: "NoActionRequired"
IsActiveMalware: "False"
What I want to know is "did SCEP already fix the issue or is SCEP letting us know there is an issue.
Please help!
Thanks again!