This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About PierazzoD
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About PierazzoD
02-13-2023
7Posts
0Likes
0Solutions
Feb 13, 2023Last Visited
User
Activity
User
Profile
Latest posts by PierazzoD
| Subject | Views | Posted |
|---|---|---|
| 477 | 11-09-2022 08:32 AM | |
| 768 | 05-23-2022 05:52 AM | |
| 1122 | 05-12-2022 04:34 AM | |
| 2358 | 01-27-2022 06:40 AM | |
| 2820 | 01-27-2022 02:10 AM |
User Badges
Community Statistics
| Member Since | 08-03-2021 01:55 AM |
| Date Last Visited | 02-13-2023 09:45 AM |
| Posts | 7 |
11-09-2022
06:33 PM
Hi @PierazzoD the capability does not exist in XDR.
In any case, I would recommend you to perform such actions manually with oversight to ensure that alerts that are candidates for being excluded go through due diligence and testing to ensure there are no missed alerts.
... View more
05-23-2022
09:25 AM
The Live Community does not have access to email settings for providing resolution. You may want to try the MX domain records and contact PANW IT directly.
... View more
05-12-2022
06:48 AM
Hi @PierazzoD, The alert for the BTP rule mentioned above has been confirmed to be a false positive, and a fix has been implemented in content update version 510-90618. This content version was release on May 11, 2022 around 10:00 AM EST. Please ensure that you are enable configured to receive the latest content updates by reviewing the Agent Setting Profile - Content Configuration setting applied to your endpoints. If you experience any additional operational impact, then you may raise a support case to determine next steps.
... View more
01-27-2022
07:24 AM
Dear PierazzoD " Windows cannot verify the digital signature for this file. " log is clear indication of the problem. You can clean XDR with cleaning tool. For the getting this tool, You need to open a ticket via support portal and then you can try again to install. Alternative solution, Required certificates are installing to certificate store when you install XDR. so You may try to DDISABLE_INTEGRITY_CHECKS with bcdedit. Try to upgrade and restore to old configs (enable integrity check). Btw, I've never tried this before and thats why I'm gonna recommend open a support request again.
... View more
01-20-2022
10:18 PM
Hi @PierazzoD there are a few ways that XDR can detect it. If Cortex XDR is installed after the malware is already in the process of encrypting files (e.g., ransomware), BTP's will protect against anything deemed suspicious/malicious, including ransomware-related activities. To ensure complete protection, it is recommended to restart the host after a successful agent installation and ensure the security profiles are configured and applied appropriately. Ref: https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/endpoint-security/endpoint-security-profiles/add-malware-security-profile.html
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
02-13-2023
09:45 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks