Who Me Too'd this topic

Announcements

Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

Who Me Too'd this topic

soporteseguridad
L4 Transporter

SMB : SMB: User Password Brute-force Attempt

Hi,

 

my customer had a problem with this threat. They have a internal app which was failing when palo alto updates changed the action to reset-both. Customer told me that this problem started last 15/06 but i went to the PA updates mails and i didnt see anything about changing the action for this threat (SMB: User Password Brute-force Attempt ID 40004)

 

In default action we can see alert but PA is doing "reset both"

 

Whats happening??

Who Me Too'd this topic