cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who Me Too'd this topic

Connection to self.events.data.microsoft.com/OneCollector/1.0/ is flagged as log4j

L0 Member

Hi, anybody knows why connection to self.events.data.microsoft.com/OneCollector/1.0/  is being flagged as log4j by Palo Alto firewall? 

 

Threat: Apache Log4j Remote Code Execution Vulnerability(92004)

Threat ID: 92004

Threat Category: code-execution

 

I believe this is telemetry from Microsoft products, probably MS Office. Appreciate if anybody can help to explain.

 

Thank you. 

 

Who Me Too'd this topic