topic ConnectWise Control connection getting reset in General Topics https://live.paloaltonetworks.com/t5/general-topics/connectwise-control-connection-getting-reset/m-p/484587#M104438 <P>Latest spyware signatures appear to be blocking legitimate connections to ConnectWise control. The 5/2 AppThreat-8564-7375 update categorizes the connection/file (GetSessionDetails) as threat&nbsp;Generic PHP Webshell File Detection.</P><P>Produces "unknown error" on the ConnectWise portal page.</P><P>The only way I can get around it is to exclude the connectwise site from forward decryption.&nbsp;We have been using this product for years. Trying to figure out what went wrong here.&nbsp; Is it possible PA signature update is flawed?</P><P>&nbsp;</P> Tue, 03 May 2022 18:06:40 GMT dkordyban 2022-05-03T18:06:40Z ConnectWise Control connection getting reset https://live.paloaltonetworks.com/t5/general-topics/connectwise-control-connection-getting-reset/m-p/484587#M104438 <P>Latest spyware signatures appear to be blocking legitimate connections to ConnectWise control. The 5/2 AppThreat-8564-7375 update categorizes the connection/file (GetSessionDetails) as threat&nbsp;Generic PHP Webshell File Detection.</P><P>Produces "unknown error" on the ConnectWise portal page.</P><P>The only way I can get around it is to exclude the connectwise site from forward decryption.&nbsp;We have been using this product for years. Trying to figure out what went wrong here.&nbsp; Is it possible PA signature update is flawed?</P><P>&nbsp;</P> Tue, 03 May 2022 18:06:40 GMT https://live.paloaltonetworks.com/t5/general-topics/connectwise-control-connection-getting-reset/m-p/484587#M104438 dkordyban 2022-05-03T18:06:40Z Re: ConnectWise Control connection getting reset https://live.paloaltonetworks.com/t5/general-topics/connectwise-control-connection-getting-reset/m-p/484643#M104440 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/32225">@dkordyban</a>,</P> <P>There's been multiple reported issues with the new threat signatures sent out last night. I'd just roll that update back for the time being and wait for PAN to push out an update. Seems that its also triggering for some legitimate M365 traffic and some Bing traffic.&nbsp;</P> Tue, 03 May 2022 20:19:24 GMT https://live.paloaltonetworks.com/t5/general-topics/connectwise-control-connection-getting-reset/m-p/484643#M104440 BPry 2022-05-03T20:19:24Z