Hi, anybody knows why connection to self.events.data.microsoft.com/OneCollector/1.0/ is being flagged as log4j by Palo Alto firewall? Threat: Apache Log4j Remote Code Execution Vulnerability(92004) Threat ID: 92004 Threat Category: code-execution I believe this is telemetry from Microsoft products, probably MS Office. Appreciate if anybody can help to explain. Thank you.
... View more