Hi,
I am having issues where Crowti.A / Cryptowall 3.0 had infected some network shares. While thankfully damage was minimal and recoverable I am a bit concerned that SCEP 2012 is not detecting it ?
Can someone confirm for my piece of mind that this virus is detectable - the MS documentation says it is but I am finding that the detection happens when the html file is dropped to the network share which is after the files have been encrypted, a bit late by then.
Many thanks for your assistance.
Brian