I need a solution
How to set up File Type Mis-Match based detection - Email & Web Uploads inorder to detect User behavior or violations by trying to circumvent controls by changing the file type (extn).
For example, if a user changes the .pdf or .zip file name extension to .txt and emails the file, the detection engine can still register a match because it checks the binary signature of the file to detect it as the actual file type and trip the rule/policy. How to use this feature to detect and report any instances (web/email) where there is a filetype mismatch?
0