Threat & Vulnerability Discussions
This forum provides information regarding how to detect and prevent the impact of vulnerabilities, malware, and other threats through the use of the Palo Alto Networks security platform.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Threat & Vulnerability Discussions
This forum provides information regarding how to detect and prevent the impact of vulnerabilities, malware, and other threats through the use of the Palo Alto Networks security platform.
About Threat & Vulnerability Discussions

Welcome to the Threat and Vulnerability discussion forum. This forum exists as a resource for security professionals to discuss and share information pertaining to the topics of threats and vulnerabilities.
Not a LIVEcommunity member? Simply click here and register!

Discussions

Threat 576037320

Hi Team,

Threat 576037320 was released in one of the recent anti-virus definitions and we were wondering if we could get some more information as to why the domain of "wvtc.com" was flagged as malicious. This domain belongs to one of our customers an

...

vij by L1 Bithead
  • 878 Views
  • 0 replies
  • 0 Likes

Pan-OS Bug

  • In Preliminary checks we found that all data ports of Backend Firewalls were down
  • we established Console access to BE Firewall, we found that Firewalls were running in the maintenance mode
  • We managed to reboot BE Firewalls and bring them up at about 7.
...

Bioc rules (XQL query)

Hello everyone. I need help about bioc rules. I found a lot of ioc rules from other source. But I dont know how can I change that ioc rules to BIOC rules. Thats really so big problem for me and I can't figure out. Who can help me about that? Thanks i

...

Ajhuge by L0 Member
  • 1653 Views
  • 2 replies
  • 0 Likes

DNS Signatures

Our Palo started blocking a 3rd party site that is used by our organization.  It was being sinkholed.  I found the threat ID and it appears that it was tagged as virus/spyware.  Short of allowing an exception for this one threat ID, is there any othe

...

Security Profiles

I have a PA 3410 which has an Advanced Threat Prevention licence but when I highlight Antivirus/Anti-spyware/Vulnerability Protection there is a message in red at the bottom of the screen saying "Threat Prevention License is required for antivirus, a

...

Wildfire Submissions

I have a couple questions concerning Wildfire which I can't find the exact answers in any of the knowledge articles. 

1. Is the entire file or email attachment sent to the WF cloud or just a sample/hash? Online I've seen both statements but can't con

...

Vulnerability (CVE-2022-41080

Hello Everyone,

 

Hope you are all doing well,

 

Yesterday I was received vulnerability email from paloalto.

  • Palo Alto Networks released this emergency content update for a critical Server-Side Request Forgery Vulnerability in Microsoft Exchange (CVE
...

  • 511 Posts
  • 71 Subscriptions
Top Solution Authors