Customers might be unable to connect with us via the Sophos Malaysia Support Hotline number. Our teams are actively working on a fix. In the interim, we request customers to use the backup hotline number - +65 3157 5922 (Singapore) or raise a support request at https://support.sophos.com/.

Help us enhance your Sophos Community experience. Share your thoughts in our Sophos Community survey.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 6 replies
  • Subscribers 10 subscribers
  • Views 10053 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos ATP DNS dropping *.hwcdn.net domains

rm90

Hi all

We are seeing a lot of dropping from Sophos UTM9 packages (ATP DNS) from *.hwcdn.net.

Someone else?

Examples;


cds.f7y3z2w8.hwcdn.net
cds.d2s7q6s2.hwcdn.net
cds.c4s5i3x5.hwcdn.net

Looks like it is from Windows Update / Microsoft, but some sites telling its malicious, others not.

Also, I found it: https://answers.microsoft.com/en-us/windows/forum/all/are-microsoft-webservices-safe-behind-next-public/b819c103-2cb3-4874-b46e-b375360a3bf6



This thread was automatically locked due to age.
Unfiltered HTML