Sign In
- Platform
- Solutions
- Modern NDR
- Resources
- Company
Platform
Modern NDR
Resources
Platform
Modern NDR
Resources
DETECTION OVERVIEW
Risk Factors
Unauthorized FTP traffic that crosses the network perimeter should be investigated for signs of malicious activity.
Legitimate external FTP traffic at the network perimeter might often look like malicious traffic to unauthorized file servers. Configure Network Localities in the ExtraHop system to classify legitimate external FTP traffic as internal.
The system might change the risk score for this detection.
Kill Chain
Risk Score
78
N/A
Quarantine the device while checking for indicators of compromise
Block FTP inbound and outbound traffic at the network perimeter
