What happens when the IOC breach detection engine on FortiAnalyzer finds web logs that match a blocklisted IP address? (Choose one answer)

A. The endpoint is marked as Compromised and, optionally, can be put in quarantine.
B. FortiAnalyzer flags the associated host for further analysis.
C. A new Infected entry is added for the corresponding endpoint.
D. The detection engine classifies those logs as Suspicious.

Brave-Dump Clients Votes

C 100%

Comments

Jean_Teub 2025-11-27 09:14:11

Selected Answers: C