This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

crl.verisign.com Threat Protection false positives?

Hi all,

We are seeing an increase in ATP notifications just today, in relation to *crl.verisign.com

This seems like its a certificate look up? Mulitplie UTMs are reporting this same threat with different clients, we have run malware bytes and full system AV scan and can't seem to find anything.

The one PC we did find a trojan, we have cleared and just now it has said the same IP tried to get to the same site? the Reason is both DNS and Proxy...

This thread was automatically locked due to age.

Parents

0 wdeman_01 over 10 years ago

Sophos support reports: "Yes it looks to have been a false positive , this has now been corrected so you should no longer have any issues."

Update: unfortunately still getting same alerts...
Cancel
Vote Up 0 Vote Down

Cancel
0 ondrej.holas over 10 years ago in reply to wdeman_01

Update: unfortunately still getting same alerts...

Unfortunately since 11:26 GMT there is some problem with Up2Date servers - high packet loss leading to retransmissions and in case of rarely successful TCP handshake, server returns HTTP error 500. Probably overloaded...

Ondrej
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 ondrej.holas over 10 years ago in reply to wdeman_01

Update: unfortunately still getting same alerts...

Unfortunately since 11:26 GMT there is some problem with Up2Date servers - high packet loss leading to retransmissions and in case of rarely successful TCP handshake, server returns HTTP error 500. Probably overloaded...

Ondrej
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data