1. Help Center
  2. Backup data insights

What should you do when SysCloud identifies a potential ransomware threat in your backup archives?

Follow the below steps: 

Step 1: Login to SysCloud application as an administrator.

Step 2: Click on 'Reports' on the top navigation bar and in the cloud selector, navigate to the 'Ransomware report' under 'Google Workspace'.



Or alternatively, you can also click on the 'Ransomware' widget on the dashboard under 'Backup Data Insights' section to navigate to the ransomware report.

Step 3: You will be able to view a list of potential ransomware threats identified by SysCloud. To take appropriate action, select the checkbox next to the alert. You can perform any of the below actions,

1. Delete (from SysCloud archives and Google Drive)

2. Take Control from Owner - Take control of the file with the ransomware threat from the user who owns it.

3. Dismiss - Dismiss the alert if you think it is not a potential threat.