Solved: Re: Ransomware activities detected

Atish2 · ‎2025-07-29

Trigger Condition Ransomware activity detected on volume volume1 in Storage VM SVM1. How to resolve this issue.

JPick · ‎2025-07-29

Hello. Based on the information provided, it appears the next step would be to evaluate the notification to determine whether the activity is acceptable (false positive) or whether an attack seems malicious. I would start by reading this: https://docs.netapp.com/us-en/ontap/anti-ransomware/respond-abnormal-task.html

-Thx

View solution in original post

JPick · ‎2025-07-29

Hello. Based on the information provided, it appears the next step would be to evaluate the notification to determine whether the activity is acceptable (false positive) or whether an attack seems malicious. I would start by reading this: https://docs.netapp.com/us-en/ontap/anti-ransomware/respond-abnormal-task.html

-Thx

Ransomware activities detected

New video on NetApp KB TV

New video on NetApp KB TV

Site Operation Hours via NSS