Security Center displays a security score on the Overview tab. The security score is calculated based on the security status of your assets. A higher score indicates fewer risks in your assets. If your security score is lower than 95, we recommend that you handle detected risks at the earliest opportunity. This topic describes how to improve the security score of your assets.
Background information
- For more information about the security score, see Security scores.
- For more information about the penalty points, see Deduction items.
Handle risks
- On the Overview tab, click Fix Now in the Secure Score section.
- In the Security Risk panel, find the type of risks that you want to handle and click Process Now.
- On the page that appears, handle the risks.
To handle risks, perform the following operations:
- Viruses: In the left-side navigation pane, click Settings. On the General tab, turn on Anti-Virus.
- Brute-force attacks: In the left-side navigation pane, click Alerts. On the Alerts page, click Settings in the upper-right corner. In the Settings panel, find the Anti-brute Force Cracking section and configure defense rules against brute-force attacks. For more information, see Configure defense rules against brute-force attacks.
- Ransomware: In the left-side navigation pane, choose . On the page that appears, enable anti-ransomware and configure anti-ransomware policies. For more information, see Enable the anti-ransomware feature and Create a protection policy.
- Unhandled alerts: In the left-side navigation pane, choose . On the page that appears, handle alerts. For more information, see View and handle alert events.
- Unfixed vulnerabilities: In the left-side navigation pane, choose . On the page that appears, handle vulnerabilities.
- For more information about how to fix Linux software vulnerabilities, see View and handle Linux software vulnerabilities.
- For more information about how to fix Windows system vulnerabilities, see View and handle Windows system vulnerabilities.
- For more information about how to fix Web-CMS vulnerabilities, see View and handle Web-CMS vulnerabilities.
- For more information about how to fix application vulnerabilities, see View and handle urgent vulnerabilities.
- For more information about how to fix urgent vulnerabilities, see View and handle application vulnerabilities.
- Baseline risks: In the left-side navigation pane, choose . On the page that appears, handle baseline risks. For more information, see View and manage baseline risks.
- Cloud service configuration risks: In the left-side navigation pane, choose . On the page that appears, handle configuration risks in cloud services. For more information, see View and manage configuration risks.
- AccessKey pair leaks: In the left-side navigation pane, choose . On the page that appears, handle AccessKey pair leaks. For more information, see Detection of AccessKey pair leaks.
After all the detected risks are handled, the security score is improved to 95. - Viruses: In the left-side navigation pane, click Settings. On the General tab, turn on Anti-Virus.
Note
- In the left-side navigation pane, click Overview. On the tab that appears, click Fix Now in the Secure Score section. In the Security Risk panel, choose . The penalty points indicate that your assets were attacked. You do not need to handle the attacks. In the left-side navigation pane, click Attack Awareness to view the attacks that are blocked by Security Center. For more information, see Attack awareness.
- Security Center Anti-virus does not support the baseline check and attack awareness features. Therefore, the items related to these two features are not covered when Security Center Anti-virus calculates the security score.
- Security Center Advanced does not support the attack awareness feature. Therefore, the items related to this feature are not covered when Security Center Advanced calculates the security score.