Threat & Vulnerability Discussions
This forum provides information regarding how to detect and prevent the impact of vulnerabilities, malware, and other threats through the use of the Palo Alto Networks security platform.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Threat & Vulnerability Discussions
This forum provides information regarding how to detect and prevent the impact of vulnerabilities, malware, and other threats through the use of the Palo Alto Networks security platform.
About Threat & Vulnerability Discussions

Welcome to the Threat and Vulnerability discussion forum. This forum exists as a resource for security professionals to discuss and share information pertaining to the topics of threats and vulnerabilities.
Not a LIVEcommunity member? Simply click here and register!

Discussions

ACC risk factor

Looking at our ACC tab, I see that SMTP traffic has a risk of 5.  We only accept SMTP from our Symantec.cloud smart host.  It is then decrypted coming into our firewall and scanned again.  We do not decrypt outgoing SMTP, but we do have an anti-virus

...

Resolved! Cascading URL Filters?

To the world, creating Security rule for a specific user (call it, a rule to permit access dodgy website access), what's involved in "cascading" the rule - so, if there's no matches on that rule, that same user would be challenged against a General W

...

CVE-2017-6770

Hi ,

 

I would like to know whether Palo alto able to detect this CVE-2017-6770 since i cant find this  in threatvault .  

 

Is there any preventive solution from Palo Alto to safely guard this vulnerable from being taken advantage of?

 

Thanks.

spam-urls ?

Running PAN-OS 6.1.15 and content 709, when I filter for "spam-urls" (a category that I wasn't really aware of previously), Panorama returns "extremism" hits. Am I missing a trick here or is something broken?

notes01 by L2 Linker
  • 6862 Views
  • 4 replies
  • 0 Likes

"Whitelist" a brute force attack

Hi all,

we run a cron job from one intern server to another.

Because of this we get alerts in the threat tab and the threat tab is full of this. I don´t want to see this alerts anymore.

 

I create under Objects/vulnarebility protection/ a new profile:

In

...

bruceforce.jpg
Adrijana by L0 Member
  • 8207 Views
  • 2 replies
  • 0 Likes

Threat ID ranges definitions

Hello Threat Team,

 

Hope everyone is well today. We came across a Threat ID 6000400 which falls under an Antivirus Signature Range: SWFZWS: 6000000 - 6000500 (Ref: https://live.paloaltonetworks.com/t5/Threat-Vulnerability-Articles/Threat-ID-Ranges-in-

...

image2.jpg
image005.png
Fedz by L0 Member
  • 7865 Views
  • 1 replies
  • 4 Likes
  • 474 Posts
  • 63 Subscriptions
Top Solution Authors
Top Liked Authors