How to report false positive for ArcSight Threat Intelligence?

Hi, we recently discovered that our website has been added to ArcSight Threat Intelligence's suspicious category using VirtusTotal tool, and tried to send a request to this email address: arcsight-virustotal@microfocus.com but so far nothing has changed. We would like to ask about a proper way to report false positive for our website.

Thank you.

Parents
  • 0

    Hi  ,

    My company is having the same issue. I emailed arcsight-virustotal@microfocus.com, but never received a response. Is there a better place for me to go to report a false positive?

    Ahmed

  • 0 in reply to 

    Hi,

    Following up here. Have not heard back either from the email address or from this forum. Any guidance on reviewing our domain would be helpful. Thank you.

    Ahmed

  • 0   in reply to 

    Hi Ahmed,

    can you please provide me the IP/URL in question via a direct message? I have not seen a VT report received which we did not process.

    I can probably help with some manual extra efforts but need the URL/IP in question,

    Markus

    Sr. Product Line Manager |  ArcSight Threat Intelligence
    OpenText Cybersecurity

  • 0   in reply to   

    Hi Ahmed,

    i have initiated the needful. Please allow some days and then recheck again.

    MS

    Sr. Product Line Manager |  ArcSight Threat Intelligence
    OpenText Cybersecurity

  • 0 in reply to   

    Hi Markus Sell,

    I am following up on my previous message regarding the false positive classification of our website, lokalizatororange.pl, flagged as "Suspicious" by ArcSight Threat Intelligence.

    I’ve also discussed this issue with you in another thread link: https://community.microfocus.com/cyberres/arcsight/f/discussions/528517/can-someone-help-reclassify-my-webpage-details-in-post, but you stopped responding there, leaving the issue unresolved.

    On August 8, 2024, I also sent an email to arcsight-virustotal@microfocus.com, but unfortunately, I have not received any response.

    I also contacted VirusTotal regarding this matter, and they responded that we should reach out to you directly as they do not have the capability to change the results. I have attached their response for your reference.

    It’s very frustrating that this process is taking so long with no clear resolution in sight. The current classification is significantly impacting our business, and we have taken all the necessary steps to demonstrate that our site is legitimate and secure.

    Could you please help in ensuring that this re-analysis is prioritized and completed? We urgently need this resolved.

    Thank you for your attention, and I look forward to any updates.

    Best regards,
    Szymon

Reply
  • 0 in reply to   

    Hi Markus Sell,

    I am following up on my previous message regarding the false positive classification of our website, lokalizatororange.pl, flagged as "Suspicious" by ArcSight Threat Intelligence.

    I’ve also discussed this issue with you in another thread link: https://community.microfocus.com/cyberres/arcsight/f/discussions/528517/can-someone-help-reclassify-my-webpage-details-in-post, but you stopped responding there, leaving the issue unresolved.

    On August 8, 2024, I also sent an email to arcsight-virustotal@microfocus.com, but unfortunately, I have not received any response.

    I also contacted VirusTotal regarding this matter, and they responded that we should reach out to you directly as they do not have the capability to change the results. I have attached their response for your reference.

    It’s very frustrating that this process is taking so long with no clear resolution in sight. The current classification is significantly impacting our business, and we have taken all the necessary steps to demonstrate that our site is legitimate and secure.

    Could you please help in ensuring that this re-analysis is prioritized and completed? We urgently need this resolved.

    Thank you for your attention, and I look forward to any updates.

    Best regards,
    Szymon

Children
No Data