How do I know if I'm in isolation? How do I know if I'm in isolation?

How do I know if I'm in isolation?

Question:

How do I know if I'm in isolation?

Answer:

Dual Isolation Modes:

There are 2 ways you can go into isolation mode. Depending on your administrator settings you will be able to choose which type of isolation mode to navigate towards. Our Dual Isolation Modes allows the administrator to choose if end-users should see the interstitial page or go directly into isolation when you encounter a suspicious website.

Option 1

Direct to isolation with no details on why isolation is happening.

Isolation_Snip__2_.PNG

Option 2

Isolation interstitial page with details on why isolation is happening.
Screenshot 2024-11-15 at 12.16.35 PM.png

You will be notified that we have detected the site as potentially malicious (text may differ based on your organization's settings. You have a few options from this page:

  • Take me to safety: closes the page and returns the user to the previous page.
  • Open in Safe Isolation: opens the page in isolation mode so the user can navigate the site in a remote isolation environment. Keyboard input and copy/paste are disabled to prevent theft of credentials or data.
  • Submit feedback: more prominently displays the option to submit feedback to the administrator through our Feedback feature.
  • Page Preview: a page preview pane displays the site that user is attempting to navigate to. Note that screen capture is from Conceal backend server and if capture fails (site is offline or can't be accessed by Conceal) a placeholder will be displayed.
  • View details: the view details button can be expanded to display risk score, detection details and navigation information (such as whois and redirects) if desired.
    • Decision: Simply shows the score by default. Expanding shows the detection engine details.
    • Previous location: Where a user was before they came to this site. If it was via a link from an external app, it will be empty. If a URL was pasted in the address bar or a bookmark was used, it will be empty. If it was an in-browser link, the site that hosted the link will appear here.
    • Redirect activity: If there were redirects, this will show the entire chain of events for the navigation. It can be something as simple as a site upgrading from http to https, or more convoluted chains. Expanding the card shows the actual detail of the redirects and what type they were.
    • Current location: This shows the current site. Expanding the card shows the old "Site Detail" content.
    • Search params: This shows if there was any additional data passed to the site within the URL. The expansion shows the actual data that was sent.

*Never hesitate to contact your Customer Success Manager for any questions or concerns. You may also open a support ticket at support.conceal.io by scrolling to the bottom and clicking Submit a request.