Script: Checking if a sample is detected as malware by Symantec by its hash
On the Symantec site, you can not search malwares by its hash, as for now. I made two scripts to help you, if there is a need to check a lot of hashes. You will need a free VirusTotal account, to use...
View ArticleDHCP Server shows SEP leases??
I need a solution Setup a new Server 2016 with DNS and DHCP and the DHCP server lists all these leases with client IP addresses.It looks like this: 192.168.0.40 SEP64XXXXXXXXXX.my.domain.com The...
View ArticleClik here to view.
WannaCry ランサムウェアについて知っておくべきこと
WannaCry というランサムウェアが、全世界のネットワークで急速に拡散しており、ファイルを人質にされる被害が出ています。Read More
View ArticleATP Network - Anybody manage to capture wannacry ransomware in their sandbox...
I need a solution As per topic, anybody able to share if their ATP box managed to detect it?Thanks 0
View ArticleMigrate from Single Tier to Three Tier
I need a solution Hello all,I currently have a pilot implementation of DLP where I've setup a single tier architecture of DLP. Now we're planning to expand the setup and move to Three Tier...
View ArticleSPF not working
I do not need a solution (just sharing information) Hi All,Rcently I have configured a new SPF on my DNS and in addition SMG support helped me to configure SPF chcker, but from some resaon it doesnt...
View ArticleWSUS and OS Call warning error
I need a solution Hi guys,New so DCS:SA and the client has setup a WSUS box (new implemention and when trying to patch server im seeing an OS call error in the DCS Console which is looking fairly...
View ArticleScan Lotus Notes
I need a solution Hello everybody,I’m new for this forum and for DLP also.I have a question about the Scan Lotus Notes:I have one error when I scan the Lotus Notes "Cannot locate IBM/Lotus Notes JAR...
View Article"Unscannable due to limits exceeded" with 11.5MB Excel file attachment
I need a solution Hi,We have an "Unscannable due to limits exceeded" error/bug with SMG v10.6.2-7 Our SMTP content scanning options are as follows:Maximum container scan depth: 20Maximum time to open...
View ArticleTurn off all local PC Symantec Notifications for CLEAN files
We dont want users to have pop up appear for every single clean file. It would be great if notifications for clean files could be turned off. Obviouslly we want to keep the notificaions of files that...
View ArticleEliminate need to restart after modifying SEP Application and Device Control...
When creating, editing or modifying Symantec Endpoint Protection's Application and Device Control policies, you sometimes need to restart the computer to force the rules to take effect. Would like to...
View ArticleVPN connection freezes with SEP firewall on
I need a solution I connect to a customer's site using Avaya VPN. I can access through the VPN only when SEP is disabled. Once SEP re-enables after 5 minutes (my employer's policy), the connection...
View ArticleSPF record missing some IPs?
I need a solution We've added the messagelabs.com SPF record, but are still getting SPF fails on the following IPs registered to...
View ArticleReceiving Connection Timeout From MessageLabs.com
I need a solution We cannot send email to our bank! We keep getting the following error connect to cluster5.us.messagelabs.com[216.82.241.195]:25 connection timed out.I have check the symantec...
View ArticleIf patch is NOT installed then block internet, and sometimes intranet
I need a solution Hello all,I've played with with this concept in the past, but never came up with a complete solution. I have a Custom IPS Signature that can block individual external sites, Google,...
View ArticleClik here to view.
WannaCry Ransomware: 6 Implications for the Insurance Industry
Background Image on Blogs "Quilted" Page: wcry.pngPublish to Facebook: No Twitter Card Style: summary The WannaCry ransomware is one of the most significant and widespread cyber security attacks ever...
View ArticleClik here to view.
What you need to know about the WannaCry Ransomware
The WannaCry ransomware struck across the globe in May 2017. Learn how this ransomware attack spread and how to protect your network from similar attacks.Read More
View ArticleWindows 10 Build 1703 Vulnerability
I need a solution Is the Windows 10 Build 1703 vulnerable to the Cry attack? 0
View ArticleInbound and outbound mail rejected by messagelabs (553)
I need a solution Several of our customers use messagelabs and are unable to send or receive email from our domain (localytics.com). They are receiving the generic 553 message. Our SPF and DKIM...
View ArticleSEP queries
I need a solution Hi All,Just a quick queries related to SEP 14.With the help of SEP Host integrity feature can we check vulneblity in OS application.Also does SEP agent can be installed on Windows...
View Article