350-701 Endpoint Security and Identity • Set 7
350-701 Endpoint Security and Identity Practice Test 7 — 15 questions with explanations. Free, no signup.
A security analyst notices that a file that was initially allowed by Cisco AMP for Endpoints has later been determined to be malicious. The analyst needs to investigate the file's propagation across endpoints. Which Cisco AMP feature should the analyst use to view the timeline of events?