Andre_Santtos
5 months agoNew Contributor
Alerts Securty Endpoints
Our security team alerted us to a scanning behavior that the tool continues to perform on the network even after completing an intrusive remote access using the software.
From the moment the analyst performs a search on an endpoint from within Logmein, the tool does not stop scanning the network until the analyst has completed it 100% on the machine.
What happens is that many analysts do not have the habit of closing the software on their machine before finishing work, and this ends up generating suspicious behavior alerts for the security team, since Logmein continues its scan after the analyst's working hours.
How can resolve this?