Skip to content

Box detection and remediation

Box does not support malware detection by default, but does offer a paid feature named "Box Shield" that detects malware in Box storage and restricts download and sharing. Coro detects malware in these files as soon as they are uploaded from an external source or the user's device to cloud storage.

After Coro moves the file to the Suspected folder, a ticket is created. The admin user has the following remediation options available:

  • The respective file can be approved, and if approved, it is returned to its original location on the cloud drive.
  • The admin user can delete these files, effectively putting them on a block list for the entire organization. In such a case, the specified file will be removed from the Suspected folder.
  • The admin user can move these files to trash. The files are kept up to 30 days.