[RESOLVED] Security Centre - i640.c2rx marked as malicious

GiacomoS
Meraki Employee

Good day Community people around the world,

 

Resolved at 1:50PM UTC: Our support teams have worked with Talos developers, who have deemed this benign. This has been rectified by changing the file disposition in AMP, which effectively allows our customers to access the file. This update should be reflected on our customers' appliances in the next 1-2 hours.

 

We are currently investigating reports of two specific files, possibly tied to Office365 updates, being either categorised as Malicious retrospectively or actively being blocked.

 

We are still clarifying whether this is a false positive with our internal teams. 

 

As the investigation continues, we will provide further updates.

 

Many thanks!

Giac

 

 

2 Comments
GiacomoS
Meraki Employee

Hey team,

 

We have now completed analysis of the file in question and it has been deemed as benign. 

The disposition has been updated accordingly and should start propagating to your MX appliances in the next couple of hours.

 

If you are still seeing issues after 2 hours, please try to force a configuration fetch through a minor change and feel free to reach out to Support if that doesn't help. 

 

Many thanks for your patience here!

Giac

haupt
Meraki Employee

Hey Community, this issue is now considered resolved. If you run into issues, please open a case with Meraki Support.