
Threat Scan is a security feature that proactively scans backup data for malware and anomalies, ensuring the restoration of clean data and preventing reinfection during recovery processes.
Vendor
Commvault
Company Website
Commvault Threat Scan enhances data protection by integrating continuous monitoring and scanning of backup files to detect and isolate malicious content. Utilizing a built-in signature-based malware engine, it identifies known threats, while advanced artificial intelligence (AI) and machine learning (ML) techniques, known as Threat Scan Predict, detect zero-day and polymorphic malware variants. Upon detection, infected files are automatically quarantined, ensuring that only clean data is restored, thereby maintaining the integrity of the recovery environment and minimizing downtime. Additionally, Threat Scan integrates with Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms, providing comprehensive security insights and facilitating prompt incident response.
Features
- Continuous Scanning: Regularly monitors backup data to detect and halt potential threats before they impact the production environment.
- Smart Quarantine: Automatically isolates infected files from backup content, preventing their restoration and subsequent reinfection.
- Multi-Layered File Analysis: Employs a combination of signature-based detection and AI-driven analysis to identify and label threats within backups.
- Advanced AI Integration: Leverages over 100 million threat intelligence indicators to swiftly recognize emerging threats.
- SIEM and SOAR Integration: Seamlessly connects with existing security operations tools, enhancing investigative capabilities with additional context.