We started getting W32.RetroDetected (Chrome.exe) detections on a number of computers. We are continuing to receive them. Anyone else seeing this?
We started getting W32.RetroDetected (Chrome.exe) detections on a number of computers. We are continuing to receive them. Anyone else seeing this?
I´m trying to stop the email notifications from a subscription filter in Cisco AMP, a coworker create this subscription by mistake and now we're recieving a lot of emails related to a Execution Blocked and I want to stopped please
Dear Cisco Community, I have the concern with define rule for Endpoint Purge. There have profile / logical profile / Identity Group hitting UNKNOWN around 300K. For Endpoint Type get "MISC". Let review the rules - Unknown And Endpoint Purge Inactiv...
Deploying Cisco CyberVision and 1800 Router for client. Seeking advice/guidance on best deployment methods/options
File: update.exeMD5: 648c906259cfbd6f16fc182096e4f301SHA-1: b331ea934c8c2b7eaad18f3c9e177022dccfc05aSHA-256: f86384278d74c3de6a1a7b9ac6953634725da77c3d19ef4ea2742d37249b70eaDetection: Win.Trojan.Generic::95.sbx.tgThis program is the upgrade program f...
Hello,I was wondering, if someone has any experience how Elisity use Cisco cat9300 as sensor and policy enforcement "agent" For example, what protocol do they use. For example, do they use restconf? And what kind of API calls are made and what part...
Hello everyone, Our Secure Endpoint license entitled for 65 connectors and the dashboard showed we already have 50 connectors deployed. However, in the license information, it is showing that we have 17 unused connectors (I think it should be 15)....
It's necessary to organize connector endpoints by their location within the Active Directory organizational unit structure in an automated fashion. Deployment documentation suggests group should be defined at the point of connector deployment. This m...
I believe that there are three ways below that secure clients (formerly X) can control the version. (Correct me if wrong)AnyConnect VPNCloud ManagementSecure Endpoint Can I control the version of Secure Client UI?
For anyone else using XDR.Since the change occurred where all alerts from SE are sent XDR we have had little to zero incidents in XDR with SE observable's. While this may be a benefit and working as designed to only promote what would be considered a...
Hi, when configuring the AMP Enabler profile, can the Mac Installer URL point directly to the SE portal? i.e. using the URL provided under Management > Deployment > Download Connector - selecting required Group, then copying the URL displayed under t...
Hi,I am getting this error while installing v8.2.1.21612. I have completely uninstalled the previous versions and rebooted several times. Many computers in our environment do not have this issue only a few Windows 10 machines. Any help would be great...
Anyone else seeing large numbers of failed retrospectives on the following? We have 350 so far.Disposition: MaliciousFilename: Adobe Genuine Helper.exeDetection SHA-256: abcf2c8bab98cedb1bd973a0cefa747e6fe9d835248e4471f7cf9c26446abe6eAppears to be ge...
Hello all i have created an event stream and configured the queue on siem to collect events. i was able to verify that events are being collected using Ruby tool. Also on my eventcollector i was able to see communication with cisco AMP on tcpdump. ...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
| Subject | Author | Posted |
|---|---|---|
| 02-24-2025 10:06 AM | ||
| 01-20-2025 06:30 AM | ||
| 12-18-2024 01:13 PM | ||
| 12-04-2024 09:36 AM | ||
| 11-05-2024 01:09 PM |