Customizing Insight email notifications for Web Anti-Spyware and Anti-Malware

book

Article ID: 178898

calendar_today

Updated On:

Products

Email Security.cloud Web Security.cloud Email Threat Detection and Response

Issue/Introduction

 

Resolution

 When a user downloads a file that Insight later determines to be malicious, the Web Anti-Spyware and Anti-Malware service sends an Insight email notification.

The notification is delivered to the email addresses that you entered on the Services > Web Security Services > Anti-Spyware & Anti-Malware > Email Addresses for Notifications page.

You can use the default message to give administrators the details about the malicious download, or you can enter a custom message.

To customize the Insight email notification message

  1. Select Services > Anti-Spyware & Anti-Malware.

  2. On the Insight Email Notification tab, click Custom.

  3. Edit the subject text and body text, as needed. You can include any of the following case-sensitive placeholders in the message.

  •         The timestamp when the malware was detected: %T

  •         The name of the malicious file: %y

  •         The file hash: %h

  •         The URL of the webpage where the user downloaded the file: %U

  •         The IP address of the website where the user downloaded the file: %i

  •         The name of the users who downloaded the file: %r

  1.     When you are satisfied with your changes, click Save.

The Anti-Spyware and Anti-Malware service replaces the %<letter> placeholder with the corresponding detection information before it sends the notification.