Virus information very generic
BWC Cybersecurity Overlord ✭✭✭
I re-married my TZ 400 with CSC-MA (1.7) and got the first notifications about viruses found.
But what on gods earth should I make with these? Seriously Virus-7 and -5?
info = THREAT-TYPE :: Virus, Name :: Virus-7, SRCIP :: 10.x.x.x (Private IP), DSTIP :: 126.96.36.199 (Netherlands)
info = THREAT-TYPE :: Virus, Name :: Virus-5, SRCIP :: 10.x.x.x (Private IP), DSTIP :: 188.8.131.52 (United States)
I saw these kind of useless at on-premise installations of GMS 8.x as well in the past, but can't remember what the solution was.
Category: Capture Security Center
Hey! You will be signed out in 60 seconds due to inactivity. Click here to continue using the site.
@BWC Could you provide me CSC SN and screenshot from these Alerts ?
Unfortunately SonicWALL's security alerts just seem to present as "A LOT OF TWADDLE" these days... :(
@BWC Thanks for update, good to know its working now. We can sync the signatures from backend if needed for CSC. for on-prem you can sync signatures from AppFlow GMSFlow Server and Sync Server option.
yesterday a Virus-6 got reported, it seems that not all signatures are loaded into my instance of CSC. Or maybe there are no more names left for Viruses :)
@BWC It depands on signature update and if we are getting right info from the firmware flow.
@Darshan , that is unacceptable for me. It just means its broken.