Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who Me Too'd this topic

Sliver Framework Command and Control Traffic Detection - ThreatID 86680

L1 Bithead

Hi all,

 

has anyone see this critical threat which is correlated in our environment with google mail?

This event started with content-8770-8365.

I can see that PaloAlto did some changes in Modified Anti-Spyware Signatures in release notes.

 

It simply breaks gmail web-based email client.

I attach example pcap file.

 

I assume it is a false-positive, but ...

 

 

Who Me Too'd this topic