Skip Navigation

BlackBerry Optics
detection events

This option is only visible to users who have
BlackBerry Optics
enabled.
BlackBerry Optics
events represent malicious or suspicious events detected by the
BlackBerry Optics
Context Analysis Engine. Selecting this option will send a message to the syslog server whenever an applicable
BlackBerry Optics
detection rule or machine-learning threat-detection module is triggered on an endpoint. Selecting this option will enable syslog messages for five (5)
BlackBerry Optics
Detection event types: process events, file events, registry events, network events, and memory events.
Due to the wealth of information included in
BlackBerry Optics
detection events, the syslog representation of a detection event is reduced in size and does not contain the full set of information that is available from the
Cylance
Console or the API.