InterceptX Root Cause Analysis (RCA) cases do not generate alert email
I have had InterceptX Root Cause Analysis (RCA) cases detected with low, medium, and high priorities -- but none of them generated an alert email.
It is very important that they do so, because RCA cases imply that malicious code has attempted to run on an endpoint, and this requires manual investigation to ascertain the cause.
At the moment it appears that the only way of noticing if you have a new RCA case to deal with is if you manually go Dashboard -> Endpoint Protection -> Root Cause Analysis.
I'd like to see any of the suggestions here actually get aknowledged, let alone implemented,.
The fact that email alert generation is STILL not happening is just frightening.
David Caranfa commented
We would also like to see the RCA cases generate alerts. Even better would be to integrate the RCA log with the other event log. We should be able to click a computer in Central and view all related events regardless what component generates the alert/log. In general we should have control over alerts. Right now there is no control over alerts. In summary, we need one integrated log and granular control over alerts. thank you