Hallo Communitiy, ich hoffe ihr könnt mir helfen. Seit einiger Zeit erhalten wir täglich mehrere tausend ATP Meldungen, die sicher aufgrund falscher Konfiguration zustande kommen. Haben ungefähr zum Einrichtungs Zeitpunkt eines neuen S2S VPN zu einem…

Hallo Community, bei mir hat die Advanced Threat Protection diese Meldung ausgegeben: Benutzer/Host Bedrohungsname Ziel Ereignisse Ursprung 1 xxx.xxx.xxx.xxx C2/Generic-A 185.7.214.104 1 Iptables C2/Generic-A",…

In the last 2 days we received several ATP Mail alerts from the UTM. The hostname / IP shown in the mail is not listed in the ATP Log but i can see the IP of the host on the ATP Dashboard (Advanced Protection Statistics) in webadmin. There is no exception…

Devices in use: sg105, sg135, sg430 Firmware v9.505-4 Late yesterday all my UTMs started sending notification of attempts to contact a known malware C&C server. The advanced threat protection alert describes the attempted domain name as alpha.isp…

Starting about the 21'st of last month I've suddenly started receiving a lot of alerts from my UTM's Advanced Threat Protection. We've used it for about a year and have always gotten an alert now and then when a user does something silly, but now I'm…

I've been experiencing an issue for sometime regarding applications performing poorly when connecting via Sophos UTM9. This seems to be an issue particularly from devices running on the iOS operating system but not exclusively. Upon checking within…

I have purchased a Changhong 40inch iSmart TV to be used outside. Once I connected this TV to my network, the Advanced Threat Protection detected a threat. Which turned out to be my TV. The threat name is C2/Zbot-A. I have factory reset the TV but…

Advanced Threat Protection: The event's user/host describes an IP address that is not on my home network and not my public IP address: 218.60.112.226. The threat is C2/Generic-A and the Destination is DXUhb67bd048.app.anmorencai.com. The origin is AFCd…