cdn.btmessage.com blocked by capture client for malware
DanielOKeeffe
Newbie ✭
Capture client has blocked "cdn.btmessage.com" for malware on multiple occasions for a number of users in our organisation. So far I have discovered that it Cloudflare as a CDN ad there is contrasting reports about whether the site is malicious or not. I also can't identify where it is originating from as our users are not accessing the URL so it must be embedded in another website or advertisement. Any help o identify this would be appreciated. Also, has anyone else had this?
Category: Capture Client
Tagged:
0
Answers
As you say, it is a CDN, which means it could originate anywhere in the world, and the element may be slipstreaming in through a web page.
To validate good from bad, I always use https://www.abuseipdb.com - so much so that I created an account to be able to add to the record.
In this case, there are no flags.
I'd be very curious to know what the SonicWall techs who are handling your support case think (maybe not so subtle hint).