Hi everybody,
I’m testing CIS 5.9 and it do very well detection rate.
But I want to know what is a cloud signature detected by CIMA
for example i saw a test on youtube and a threat was detected by the cloud and the signature was “unclassifiedmalware” . Are there UnclassifiedMalware , Cloud.Behavior , and suspicious for signature name of threats detected by the cloud ? Thanks
spywar’
PS : Sorry for my english I’m french 
.
Okay, I can’t answer all of your questions, but I think I can help.
If you’re using the cloud that means that as soon as a signature is created you will have access to it. You don’t need to wait for the virus database to be updated. That’s where the UnclassifiedMalware and suspicious detections come from.
As for the Cloud.Behavior detections I believe these come directly from CIMA in real time, but I’m not sure.
If someone could clarify I’d be grateful. Thank you.