Hello. I need some help with Threat Emulation. Our customer have a couple of incidents with virus prevention.
A virus file can pass check point with detect in logs:
Severity - Critical, Confidence Level - High. Threat Prevention profile:
At the same time if we open summury report we see Prevent:
What is wrong? Antivirus does not blok this file too.