This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies. For details on cookie usage on our site, read our Privacy Policy
Our firewall detected a spyware " C2-Bitsight-Prirrit" with threat id 15006. But I can't find any information about this spyware on Palo Alto's support site. The id seems non-exist. Could it be a mistake?
... View more
Hi there, My clients have two sites rufs.ca and battleonbay.ca which have been designated as malicious. They have investigated and determined that it was caused by a theme they downloaded with maliciuos code. They have modified the original theme to remove the malicious contents. Could you please remove the sites from the malicious site list? Thanks, Yang
... View more
We've set up DNS sinkhole and it works as expected. We're able to find out which IP addresses tried to access malious sites. However, we won't be able to see the URLs these IPs were trying to access. We're thinking of building a honeypot (or maybe something else) to accept access requests from these IPs and set the sinkhole IP addrss to this machine. That way we will be able to record the URLs these IPs try to access. Does anyone know what software we can use to acheive this goal? All we need is to finish three-way handshake and record the URL requested.
... View more
We have a cluster of two PA-5060 running in active-passive mode. Two 10G interfaces are configured as an aggregated interface. They are connected to two Avaya 8600 switches which are running SMLT. Whenever a failover happens, the aggregated interface fails. We have to unplug and re-plug in the cable to make the interface start working again. Shutting down the interfaces and re-activating them doesn't help. Anyone has similar experience?
... View more