https://live.paloaltonetworks.com/t5/advanced-threat-prevention/colours-whatsapp-spyware/m-p/430164#M1288 <P>That's the domain of a malware site. There is a malicious JS file within that gets auto-loaded.</P> Mon, 30 Aug 2021 17:25:41 GMT mivaldi 2021-08-30T17:25:41Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/colours-whatsapp-spyware/m-p/429115#M1278 <P>Hi</P><P>&nbsp;</P><P>I am seeing these alerts&nbsp;<SPAN>GENERIC:COLORS.WHATSAP.TOP(345898629) on a regular basis recently, they start at random times and they persist for around an hour then drop.</SPAN></P><P>&nbsp;</P><P><SPAN>Has anybody else seen this ? we have checked the host that is generating the alerts and there is no indication that it has been compromised by the above virus although the user does remember getting the email that is the delivery method of this two weeks ago but swears they did not click the link, anti-virus software is installed on the Apple device, the Firewall is Sinkholing the traffic so I am not too concerned for the corporate network, but any more information would be greatly appreciated.</SPAN></P><P>&nbsp;</P><P><SPAN>Cheers</SPAN></P> Wed, 25 Aug 2021 12:50:43 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/colours-whatsapp-spyware/m-p/429115#M1278 laurence64 2021-08-25T12:50:43Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/colours-whatsapp-spyware/m-p/430164#M1288 <P>That's the domain of a malware site. There is a malicious JS file within that gets auto-loaded.</P> Mon, 30 Aug 2021 17:25:41 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/colours-whatsapp-spyware/m-p/430164#M1288 mivaldi 2021-08-30T17:25:41Z