Which statement regarding scripts in Cortex XDR is true?
When creating a scheduled report which is not an option?
What is the purpose of the Cortex Data Lake?
When investigating security events, which feature in Cortex XDR is useful for reverting the changes on the endpoint?
As a Malware Analyst working with Cortex XDR you notice an alert suggesting that there was a prevented attempt to open a malicious Word document. You learn from the WildFire report and AutoFocus that this document is known to have been used in Phishing campaigns since 2018. What steps can you take to ensure that the same document is not opened by other users in your organization protected by the Cortex XDR agent?