ā03-31-2016 05:36 AM - edited ā02-20-2020 09:15 PM
When actively scanning our network for vulnerabilities we sometimes come across zero-day or other malware exploits that connect to command and control servers on the Internet. Where can I report URL's of command and control servers to Cisco to improve the Web Security Appliance for the entire Cisco community?
At the moment we are just using the Blacklist feature in the WSA.
It would be more helpful if these C&C sites were blocked by the Cisco signatures.
Solved! Go to Solution.
ā03-31-2016 05:52 AM
The Security Hub, a self-service portal, provides a new option for checking the reputation of URLs , and/or submitting URLs for review. All submissions made via the portal are usually reviewed within 24 hours.
I hope this helps.
--
Sara
ā03-31-2016 05:52 AM
The Security Hub, a self-service portal, provides a new option for checking the reputation of URLs , and/or submitting URLs for review. All submissions made via the portal are usually reviewed within 24 hours.
I hope this helps.
--
Sara
ā03-31-2016 07:44 AM
Thanks a million Sara! I just tried out your procedure and it works flawlessly.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide