Protect against data corruption and malicious encryption
File Integrity is a check to ensure the format, extension, type and structure of a file match upon upload into a repository. If they do not match, the File Integrity check will be marked as failed.
This is an important check as every file type has a specific structure and an application such as Word or Excel read this structure to visualize the content of the file to the user. By changing a small portion of the structure in a malicious way or by encryption, the file becomes invalid and the content might be lost. File integrity checks can prevent users from overwriting valid files with corrupted files and protect your assets from being maliciously encrypted.
Take immediate action when file integrity fails
- Block/Deny file upload
- Quarantine file for manual review
- Generate a SIEM Alert – The actions above can be recorded in the NC Protect user activity log (UAL) and be posted to a SIEM such as Microsoft Sentinel or Splunk to send an alert that a file has failed and set off a workflow for further investigation.