Hi Team,
Could you please anyone help,how to know/identify malware hitting on a firewall or entered on a firewall.
recently we observed a xmrig malware in server.tha server team kill that process.
Client asking please check on your network devices as well.how i check in a firewall.please help.I checked like this below...
root@FW01> show security idp counters action | match xmrig
{primary:node0}
root@FW01> show security idp attack detail xmrig
error: Attack xmrig does not exist in the database
Thanks
Rakesh
------------------------------
Rakesh A
------------------------------