Detect Unusual Access of Content
The Unusual Access rule detects users who access or delete an unusually large number of files. Egnyte lets you customize this rule so you can distinguish expected behavior from malicious intent.
- From settings, navigate to Analysis Rules and Unusual Access.
- Determine what criteria should be taken into account for issue detection with indicators like file accesses and downloads, file deletions, and more!
- Then set your detection threshold and the minimum number of files a user needs to access or delete before an issue is triggered. Egnyte will tell you the number of anomalies you can expect to see at the adjusted threshold.
- Define what’s expected and stay protected from malicious intent.
To find more learning resources for Egnyte users and admins, check out: