Automated Threat Detection in Backup Images
Cohesity Alta View introduces enhanced threat hunting capabilities that automate malware detection within backup images using hash-based detection and real-time entropy analysis. The platform integrates daily threat intelligence feeds from CISA and Malware Bazaar to identify known malicious file hashes, while AI-powered entropy detection identifies unknown ransomware variants based on behavioral patterns. When anomalies are detected during backup operations, the system automatically triggers malware scans and submits indicators of compromise across the enterprise to limit blast radius. This dual-layer approach combines proactive detection of new threats with reactive blocking of known malware, preventing reinfection during restoration processes and strengthening cyber recovery posture.
Cyber Resiliency Dashboard and Impact Analysis
The Cyber Resiliency Dashboard provides centralized visibility into security threats across Cohesity Alta environments through risk scoring, misconfiguration tracking, and malware impact visualization. Security teams can monitor risk scores at data center or asset levels, with higher scores indicating potential security events requiring investigation. The Malware Impact Analysis feature displays infected servers and their connected systems in a visual web, enabling rapid identification of affected assets and containment of spreading ransomware. The platform correlates suspicious activities, data anomalies detected during backups, and encryption events to track security event progression. Custom file hash uploads create audit trails for compliance purposes, while the recovery points interface allows teams to identify clean backup snapshots for restoration after gathering forensic evidence.
