Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Administrator's Guide
  5. Section X. Detection and reporting
  7. Threat library
  9. Add threat feeds
NetBackup™ Web UI Administrator's Guide

Add threat feeds

A threat feed can consist of YARA or other rules. Ensure that you have stored the required threat feeds or rule files at the required location.

See About YARA scanning.

To add a threat feed

  1. On the left, click Detection and reporting > Threat library.
  2. Click Add.
  3. On the Add threat feed dialog box, click Upload threat feed file. Select the required threat feed from the appropriate location. It can be a YARA rule file or a .zip file.

    A YARA rule file can be of extension .yar or .yara.

  4. Enter the threat feed name.
  5. Click Save.

    After you save the threat feeds, they are validated. Threat feeds with successful validation have the status as 'Valid'. If validation is not successful, the status is shown as 'Invalid'. Use the View details option to view the reasons for the invalid status of the threat feeds.

    Only valid threat feeds can be used for YARA scanning.

Feedback

Was this page helpful?
Previous

About threat library and YARA rule files

Next

Delete threat feeds

Feedback

Was this page helpful?