Added the following alarm types to Server Alarms: suspicious process execution, suspicious process file access, abnormal outbound connection, and port forwarding
Added the following alarm types to Container Alarm Events: hacker tool, file privilege escalation, important file change, abnormal process behavior, suspicious command execution, user password theft, abnormal outbound connection, and port forwarding
Ransomware Prevention: Enabled ransomware prevention and ransomware backup separately.
User-defined rules can be added to the alarm whitelist and duplicate alarms can be handled in batches in Handling Server Alarms.
User-defined rules can be added to the alarm whitelist and duplicate alarms can be handled in batches in Handling Container Alarms.