This feature highlights the value of Votiro Cloud's Zero-day protection against Anti-Virus engine signature deficiencies.
Each file that enters your network is rescanned by Votiro Cloud every 3, 8 and 28 days against Anti-Virus engines. The Retro Scan capability can display whether Votiro Cloud detected the incoming file as a threat when the Anti-Virus engine did not.
For example, suppose an incoming file was marked by the Anti-Virus engine as "clean", but Votiro Cloud marked it as "malicious". Now suppose that the Anti-Virus signatures were later updated and when the file was rescanned the Anti-Virus engine marked it as "malicious". This means that Votiro Cloud blocked the potential real-time (Zero-day) attack when the Anti-Virus engine could not.
You can view all such incidents by selecting the Show retrospective detection items filter on the Incidents page.