BD GravityZone flagging Virus/Malware in OST/PST FIles

Billtbyhand
Billtbyhand IT Security, Backup, & Disaster Recovery Manager and Stampede South IT Admin
edited July 2023 in Enterprise Security

I'm fairly new to GravityZone and so far love it, but there's a lot to digest and learn.

I'm having an issue with BitDefender GravityZone flagging attachments in old emails located in users OST or PST files.

That part is great except that Threat Xplorer shows that it has deleted the suspicious attachment when in fact it doesn't delete it at all.

Often these are hard to track down and manually delete from a user's email without being very intrusive to the user.

Most often these are in old email from possibly years ago that the user is unlikely to ever try to open. Just in case I evaluate them and add the hash of the file to the blocked list in case they ever went back and tried to click on the attachment.

My real problem is that the next time BD scans the users email, it flags the exact same emails again, showing up as a possible threat to be dealt with, which then wastes my time verifying if it is a new unackowledged threat or simply flagging the same ones again.

The question is:

  1. Can BD actually delete the potentially infected attachment from users OST? Maybe I simply haven't found the correct setting.
  2. If BD can't actually remove the file, is there a way to automatically flag it so it doesn't show up on my Dashboard again as a Virus infection? Once again there may be some setting I haven't found to keep the same items from popping up again.

Comments

  • Gjoksi
    Gjoksi Defender of the month mod

    Hello.

    Since you need help with business product, @Alex_Dr or @Andra_B (they both provide support for business products) could take a look here and help you with the issue.

    Also, you can always contact the Bitdefender business support:

    Regards.

  • Alex_Dr
    Alex_Dr Quality & Customer Experience Specialist BD Staff

    Hello @Billtbyhand,

    My sincere apologies for the late reply.

    Yes, the Bitdefender product will delete the file, should an exception not be in place for said OST file (i have attached a link to the support file types that will be scanned, here)


    Please let me know if the situation still persists. If it does, I will require additional information, such as detailed description (type of scan, duration, ost files, with or without exclusions, does it delete the file, or not?) so I can properly assist you.


    Best regards,

    Alex D.