Mitigation
Mitigation is all about minimizing or removing the impact of a security threat. bucketAV can take specific actions to prevent the spread of the security threat. The available options include tagging the file, deleting it, quarantining it, or moving it to a different bucket.
By default, clean and unscannable files are tagged, while infected files are deleted to mitigate threats as quickly as possible. The following table shows additional options that our customers use:
Scan result | Actions |
---|---|
clean | do nothing, tag, move |
infected | do nothing, tag, delete, quarantine |
unscannable | do nothing, tag, quarantine, move |
The actions run in the following order:
- if infected, delete file and stop all other actions
- tag
- move/quarantine