{"id":7073,"date":"2021-08-13T15:24:18","date_gmt":"2021-08-13T08:24:18","guid":{"rendered":"http:\/\/gcloudvn.wam.vn\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/"},"modified":"2023-03-27T15:29:44","modified_gmt":"2023-03-27T08:29:44","slug":"trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san","status":"publish","type":"post","link":"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/","title":{"rendered":"Alert Center integrated with VirusTotal is now available"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_80 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewbox=\"0 0 24 24\" version=\"1.2\" baseprofile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Co_gi_thay_doi\" >What\u2019s changing\u00a0<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Phien_ban_Chuan_cua_bao_cao_VirusTotal_bao_gom\" >The Standard version of the VirusTotal report includes:<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Phien_ban_nang_cao_cua_bao_cao_VirusTotal_bao_gom_cac_tinh_nang_bo_sung_nhu\" >The enhanced version of VirusTotal reports includes additional features such as:<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Ai_bi_anh_huong\" >Who\u2019s impacted<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Tai_sao_lai_quan_trong\" >Why it\u2019s important<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Thong_tin_them\" >Additional details<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Bat_dau\" >Getting started<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Thoi_gian_phat_hanh\" >Release time<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/trung-tam-canh-bao-tich-hop-voi-virustotal-hien-da-co-san\/#Kha_dung\" >Available now<\/a><\/li><\/ul><\/nav><\/div>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Co_gi_thay_doi\"><\/span><b>What\u2019s changing\u00a0<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">\u0110\u1ea7u n\u0103m nay, Google \u0111\u00e3 th\u00f4ng b\u00e1o tr\u01b0\u1edbc v\u1ec1 vi\u1ec7c t\u00edch h\u1ee3p gi\u1eefa Trung t\u00e2m c\u1ea3nh b\u00e1o v\u00e0 VirusTotal. Hi\u1ec7n t\u1ea1i, Trung t\u00e2m c\u1ea3nh b\u00e1o c\u1ee7a <a href=\"https:\/\/gcloudvn.com\/en\/google-workspace\/\">Google Workspace customers<\/a> cung c\u1ea5p cho qu\u1ea3n tr\u1ecb vi\u00ean nh\u1eefng c\u1ea3nh b\u00e1o v\u00e0 th\u00f4ng tin chi ti\u1ebft c\u00f3 th\u1ec3 h\u00e0nh \u0111\u1ed9ng theo th\u1eddi gian th\u1ef1c v\u1ec1 ho\u1ea1t \u0111\u1ed9ng li\u00ean quan \u0111\u1ebfn b\u1ea3o m\u1eadt trong mi\u1ec1n c\u1ee7a h\u1ecd. V\u1edbi t\u00edch h\u1ee3p t\u00ednh n\u0103ng VirusTotal (hi\u1ec7n l\u00e0 m\u1ed9t ph\u1ea7n c\u1ee7a Google Cloud), qu\u1ea3n tr\u1ecb vi\u00ean c\u00f3 kh\u1ea3 n\u0103ng t\u00ecm hi\u1ec3u c\u00e1c c\u1ea3nh b\u00e1o c\u1ee7a h\u1ecd \u1edf c\u1ea5p \u0111\u1ed9 s\u00e2u h\u01a1n.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">When an Alert Center message contains a supported VirusTotal entity, such as a domain, attachment, or IP address, the VirusTotal report enrichment widget (VT Augment) will be available directly in the Alert Center. newspaper. For paid VirusTotal subscribers, the enhanced version of the report will auto-populate.<\/span><\/p>\n<p style=\"text-align: justify;\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-19593 size-large\" src=\"https:\/\/gcloudvn.com\/wp-content\/uploads\/2021\/08\/z2679333087882_e78cb791cbf1ac3b0dac27364e5da60d-1-1024x578.jpg\" alt=\"Trung t\u00e2m c\u1ea3nh b\u00e1o t\u00edch h\u1ee3p v\u1edbi VirusTotal hi\u1ec7n \u0111\u00e3 c\u00f3 s\u1eb5n 2\" width=\"1024\" height=\"578\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Phien_ban_Chuan_cua_bao_cao_VirusTotal_bao_gom\"><\/span><strong>The Standard version of the VirusTotal report includes:<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Observable identities \u2014 Characteristics and identities that allow you to reference the threat and share it with other analysts (e.g. file hashes).<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Reputational Threats \u2014 Malicious ratings from over 70 security vendors, including anti-virus solutions, security companies, network block lists, etc.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Threat propagation time \u2014 Key dates let you know when a particular threat was first observed in the wild and how long it was active.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Domain\/IP Whois Lookup \u2014 Registrar and registrant details for domains, as well as ownership and network coverage information for IP addresses.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Domain and server security-related metadata \u2014 HTTPS certificate for web server, web server&#039;s DNS resolution records and HTTP headers.<\/span><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Phien_ban_nang_cao_cua_bao_cao_VirusTotal_bao_gom_cac_tinh_nang_bo_sung_nhu\"><\/span><strong>The enhanced version of VirusTotal reports includes additional features such as:<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Multi-perspective detection \u2014 Additional threat analysis from crowdsourced rule matches and community scoring (e.g. YARA, Sigma, and IDS rules).<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Intrusion-related indicators (IOCs)\u2014Examples of IOCs include malware file delivery network infrastructure, servers acting as command and control for a given threat , malicious URLs seen in a certain domain, domains seen after a certain IP address, and much more.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Interactive Threat Graph \u2014 A graphical format that outlines entire threat campaigns by visualizing relationships between IOCs.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Security-related metadata \u2014 Includes software publisher information, identification of malicious macros in documents, popularity ratings for domains, domain content classifications, etc.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Wild details \u2014 Geographical and propagation time details for threats, common attacker deception techniques, and more, via VirusTotal sending metadata.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Suspicious attribute rotation \u2014 Clickable detail in the VirusTotal report, allowing you to explore the global VirusTotal dataset to find other threats with the same attributes.<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Visit the Help Center and learn more about how to use it<\/span><a href=\"https:\/\/support.google.com\/a\/answer\/10502377\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\"> VirusTotal security threat landscape and reputation report from Alert Center<\/span><\/a><span style=\"font-weight: 400;\"> for enhanced threat identification, rapid investigation and decision-making, enhanced threat remediation, and proactive defense.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Ai_bi_anh_huong\"><\/span><b>Who\u2019s impacted<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Admins\u00a0<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Tai_sao_lai_quan_trong\"><\/span><b>Why it\u2019s important<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">VirusTotal integration provides an additional layer of investigation on top of existing alerts, allowing administrators to take a deeper look at threats and potential abuse, helping them better protect their organization and data than.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Thong_tin_them\"><\/span><b>Additional details<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">VirusTotal provides an investigation layer on top of alerts but is not used directly for detection or alerting. No customer information is shared from Google with VirusTotal unless an administrator clicks it to retrieve the VirusTotal report for a specific entity.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">VirusTotal Reports are available in two versions: Standard and Advanced. Standard reports are displayed to administrators with alert center privileges. The Advanced Edition is automatically displayed to paid VirusTotal subscribers who have an active virustotal.com login session using their VT Enterprise user accounts.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">For existing VirusTotal Enterprise customers, viewing the VirusTotal report in the alert center does NOT use any of your VirusTotal Enterprise quota. If an administrator opens the VirusTotal website to do more research from the Alert Center, that will count towards standard quota usage in the same way as accessing virustotal.com directly.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Bat_dau\"><\/span><b>Getting started<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Admins: VirusTotal reports are available to admins with Alert Center privileges.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">End User: No end user impact.<\/span><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Thoi_gian_phat_hanh\"><\/span><b>Release time<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Rapid Release and Scheduled Release Domains: Gradual rollout (up to 15 days for feature exposure) starting July 26, 2021.<\/span><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Kha_dung\"><\/span><b>Available now<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Available to Google Workspace Business Plus, Enterprise Standard, Enterprise Plus, Education Fundamentals and Education Plus customers<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Not applicable to Google Workspace Essentials, Business Starter, Business Standard, Enterprise Essentials, Frontline, and Nonprofits, and G Suite Basic and Business customers<\/span><\/li>\n<\/ul>\n<p style=\"text-align: right;\"><strong>Source: <a href=\"https:\/\/gcloudvn.com\/en\/\">Gimasys<\/a><\/strong><\/p>","protected":false},"excerpt":{"rendered":"<p>C\u00f3 g\u00ec thay \u0111\u1ed5i\u00a0 \u0110\u1ea7u n\u0103m nay, Google \u0111\u00e3 th\u00f4ng b\u00e1o tr\u01b0\u1edbc v\u1ec1 vi\u1ec7c t\u00edch h\u1ee3p gi\u1eefa Trung t\u00e2m c\u1ea3nh b\u00e1o v\u00e0 VirusTotal. Hi\u1ec7n t\u1ea1i, Trung t\u00e2m c\u1ea3nh b\u00e1o c\u1ee7a Google Workspace cung c\u1ea5p cho qu\u1ea3n tr\u1ecb vi\u00ean nh\u1eefng c\u1ea3nh&hellip;<\/p>","protected":false},"author":1,"featured_media":7074,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-7073","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kienthuc","entry","has-media"],"_links":{"self":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts\/7073","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/comments?post=7073"}],"version-history":[{"count":0,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts\/7073\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/media\/7074"}],"wp:attachment":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/media?parent=7073"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/categories?post=7073"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/tags?post=7073"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}