Why is Anti-spyware signature "Generic PHP Webshell File Detection" Threat ID 81845 causing false positive alerts?
2829
Created On 05/03/22 17:51 PM - Last Modified 04/24/24 17:54 PM
Question
Why is Anti-spyware signature "Generic PHP Webshell File Detection" Threat ID 81845 causing false positive alerts?
Environment
- Supported PAN-OS
- Anti-spyware Content
Answer
- Content development team modified the signature threat id 81845 to improve false positive alert rates in Applications and Threats content release version 8565.
- Update to version 8565 or above to resolve the issue.
- If the false positive alerts are still seen, open a case with Support.