Endpoint Security

Resolved! Connect Cisco AMP for Endpoints console with Cisco FMC / ASA with Firepower console

Hi Team, We have an ASA5506 with Firepower managed by a FMC v6 running a PoC with a customer. We are adding in this project Cisco AMP for Endpoints due customer is interested to test the solution and see how is the integration of these two solutions....

Resolved! Cisco AMP for Endpoint does it consider a shutdown and then power back on to be the same as a restart?

Hi all; One of the customer has asked if Cisco AMP product does it consider a shutdown and then power back on to be the same as a restart? The reason of this questions is because there have been situations where after the connector upgrade the C...

Malware-Other dns request with long hostname segment detected

HI all, I have noticed that I have many drops in Firesight Management Centre connection table. The drops are between my Internal DNS and ISP's dns servers. They are documented as "Malware-Other dns request with long hostname segment - possible data...

FirePower Block googletoolbarinstaller_en_signed.exe download from IE

Hi All, I found firepower to blocked googletoolbarinstaller_en_signed.exe from IE browser if i use the Firefox will not to block. Is this program real Malware ?

Cloud Lookup Timeout

Hello All, One of our SourceFire device has a Malware license and recently we enabled Malware blocking. We created a File policy with the action Block Malware with reset. From the Malware events, I can see the action as Cloud Lookup Timeout which ma...

CCleaner case vs. AMP full scan

Hello,we've found marvelous Talos work done on CCleaner, again respect for State of Art discovery - (no irony - best part of AMP solution).As an output, we got ClamAV signatures to detect this threat, all you need is to scan your infrastructure or wa...

Ransomware email notifications

Hi,please be aware that AMP "potential ransomware" email notifications does NOT work properly.We've tested it with the most obvious wannacry samples. Threat was detected as ransomware and quarantined but notifications are not send. We've opened TAC, ...

Resolved! Top level sku for ESA-AMP-1Y-S3-PR.

Team, I need some help identifying top level sku for ESA-AMP-1Y-S3-PR. This is needed for a Cisco C170 ESA device (ESA-C170-K9), I would greatly appreciate any help here.Thanks-Akhtar

Cognitive Threat Analytics/Scancenter "Failed to load data!" problems

Does any one experiences "Failed to load data!"problem whenever connection details are checked?We see it instantly for a couple of days now...:(

Resolved! Can Open DNS replace sourcefire URL Filtering

Hello, I would like to know if Open DNS can replace sourcefire URL Filtering or help. as I know cisco made acquisition to open DNS and now under Cisco Umbrellawe had an issue in URL filtering and adviced to use Open DNS. so how open DNS help ? it can...

Resolved! Cisco AMP for endpoints integrations

Is there a list of products (SIEM or Web Filtering) that Cisco AMP for endpoints integrates with?

Roadmap on connector version 6.0

Can you share any information on what to expect in the future for connector version 6.0.Thank you

Resolved! Cisco Amp for endpoint 5.1.11.10455 popup message

I have a handful of users that continue to see Reboot Message after upgrading to 5.1.11, after two reboots. Anyone else seeing this issue?

Resolved! Amp for server

Why we need to disable DFC and Tetra when deploying amp on server..??

Cisco AMP Private Cloud isnt reporting Vulnerable Software/Application Details!!

This issue is kind of brain teaser, I have done multiple Private AMP implementations and I am able to see vulnerable software/application in the reports however I see this report as blank for one of the implementation. We are running latest cloud ve...

Endpoint Security

Forum Posts

Resolved! Connect Cisco AMP for Endpoints console with Cisco FMC / ASA with Firepower console

Resolved! Cisco AMP for Endpoint does it consider a shutdown and then power back on to be the same as a restart?

Malware-Other dns request with long hostname segment detected

FirePower Block googletoolbarinstaller_en_signed.exe download from IE

Cloud Lookup Timeout

CCleaner case vs. AMP full scan

Ransomware email notifications

Resolved! Top level sku for ESA-AMP-1Y-S3-PR.

Cognitive Threat Analytics/Scancenter "Failed to load data!" problems

Resolved! Can Open DNS replace sourcefire URL Filtering

Resolved! Cisco AMP for endpoints integrations

Roadmap on connector version 6.0

Resolved! Cisco Amp for endpoint 5.1.11.10455 popup message

Resolved! Amp for server

Cisco AMP Private Cloud isnt reporting Vulnerable Software/Application Details!!

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cloud IOC: ExecutedMalware.ioc

Byod access with ISE guest portal using AD store

Cisco Secure Endpoint Service Launcher fail after update

Cisco Secure Endpoint Horizon Environment Duplicates in Console

Veeam Backup and Replication. Cisco Endpoint for SureBackup anti malwa

False Positive? "Adobe Genuine Helper.exe"

About Cisco Threatgrid API

Policy Update Failed, code 3242196993?

Downloading an old amp connector

No parameter to create an installation log file?