05-27-2025 10:58 AM
We submitted the request to Palo Alto to have the URL category and risk changed and that was recategorized to 'low-risk' now. My question is will Palo Alto might identify the site as malicious again based on our activity in the future and change the category?
05-27-2025 12:14 PM
If behavior of your site changes then Palo can re-classify the category.
05-29-2025 06:14 AM
@KarthikaSubbiah wrote:
We submitted the request to Palo Alto to have the URL category and risk changed and that was recategorized to 'low-risk' now. My question is will Palo Alto might identify the site as malicious again based on our activity in the future and change the category?
There are 2 components to URL categorization, which you've mentioned (Category & Risk.) I wouldn't worry as much about "risk" as the category your site falls under. An organization can't really survive on blocking "high" risk sites alone as an attribute. There are legitime sites that also have a high risk association. It's my understanding that the risk definition is coming from some sort of observable activity from the website itself. So if your site is being defined as medium or high risk it might indicate your website might be compromised or being exploited in someway from a threat actor.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
