How i can whit list or change defender rules ,when malicious files are detected in SharePoint Online, OneDrive, or Microsoft Teams and backup failed by Veam as their is malware in file

Muhammad Zeeshan 100 Reputation points
2024-09-03T13:05:00.0733333+00:00

How i can whit list or change defender rules ,when malicious files are detected in SharePoint Online, OneDrive, or Microsoft Teams and backup failed by Veaam as their is malware in file
how we can make them whit list as these are legitimate files as per discussion with end user
or any procedure that we can change some settings

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
213 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Gautam 0 Reputation points Microsoft Employee
    2024-10-17T11:43:43.6+00:00

    Hello, If the files are being flagged as positively malicious i.e. Infected, my first advice would be to confirm them which you can do by either submitting them to the Microsoft malware service for analysis/and or to Virus Total?

    Malware Analysis at WDSI - https://www.microsoft.com/en-us/wdsi/filesubmission

    VT - https://www.virustotal.com/gui/home/upload

    That said, files on SPO and OD4B (and hence Teams) are indeed backed-up by the service. Is Veeam being run on an endpoint (a users PC) to backup files?


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.