Symantec DLP detect Upload.box.com URL as risky site.
We used DLP Synmantec Solution and it detected that outlook seemed to upload some file to weird URL which is https://upload.box.com. Symantec DLP Rule detected it when outlook client upload some files to somewhere.
From the DLP log, I found below pattern log.
Target URL : https://upload.box.com/test.txt. Even though we don't use box.com solution and we used another 3rd party outlook add-in for large attachment handling, why Symantec DLP detect this URL https://upload.box.com
Can I ask what upload.box.com is?
-
Hi there,
Welcome to the Box Community!This would be something our Box Support team would like to look into and may require specific account information.I've gone ahead and created a ticket for you so that an agent can work directly with you on looking into this. Please check your email for details.Thanks for your patience!Best, -
Thanks for update.
One of our users uploaded "test.txt" via 3rd party attachment-addin solution in outlook desktop, not via box.com and symantec DLP detected it as https://upload.box.com/test.txt for target path and https://upload.box.com as recipient
Please sign in to leave a comment.
Comments
3 comments