MENU
REQUEST URGENT HELP

Security Incident Response

If you think you have or know you have a Security Incident please fill in the form and our experienced Onevinn CSIRT team will reach out shortly.
 
The team has long experience in supporting customers in Incident Response and Compromised Recovery.
 
Keep calm and we will be with you shortly!

Helpful feature in MDATP

One of the benefits of using a cloud service backend instead of on-prem appliance boxes is that we can get new features without doing anything except for “enable” depending on feature.

One feature I like is the “flag event” feature in the timeline.

flag event defender atp

In the machine timeline view there is a “flag” we can enable on each event we find interesting. This will make it easier to go back and further investigate suspicious activities.

In the overview we can see where the flags are located in the timeline and if we want, we can also filter on flagged events

Happy Hunting
blog author image
Security Labs - Stefan och Mattias

Latest Blogposts

Johan Frisk 30 May 2023

Welcome Magnus!

1 min
/Onevinn /cloud security
Christopher Lindström 17 May 2023

Welcome Karin!

1 min
/Onevinn
Olov Norman 14 Apr 2023

Security Management is like playing a game of chess!

2 min
/Security
Onevinn

Göteborg

Kvarnbergsgatan 2
411 05 Göteborg

Stockholm

Malmskillnadsgatan 32
111 51 Stockholm

Lund

Scheelevägen 17
223 70 Lund

Karlstad

Lagergrensgata 2
652 26 Karlstad

Örnsköldsvik

Magasinallen 2
890 30 Örnsköldsvik
Onevinn Map
MISA_RGB_MemberBadge_Main_Landscape_FullColor_Dark
Gold Enterprise Mobility Management
Yubico Preferd Partner
Microsoft Advanced Specializations
Gold Cloud Platform
Lookout Mobile EDR Defense Partner
Threat Protection
Gold Cloud Productivity
EBF Onboarder
Identity and Access Management
Gold Windows and Devices
Entrust Hardware Security Modules
Information Protection & Governance