all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Should past malicious domains ever be removed from firewall blacklists? When should they?

Add to bookmarks
March 18, 2022, 4:43 a.m. | /u/luoyianwu

cybersecurity www.reddit.com

My company receives cybersecurity intelligence, mainly in the form of malicious IPs, from local ISACs. The IT Team then feed these IPs in their firewalls so access from or to these addresses is blocked. Finally, the IS Team set these IPs in a SIEM alert to serve as a double check.

Now, after several months or even years, the employees might need to access websites with the same IPs, to conduct business or Anti-Money Laundering measures. Their access is blocked. …

blacklists cybersecurity domains firewall malicious

Visit resource

More from www.reddit.com / cybersecurity

MITRE says state hackers breached its network via Ivanti zero-days an hour ago | www.reddit.com
amp att cybersecurity mitre +2
Chinese Government Poses 'Broad and Unrelenting' Threat to U.S. Critical Infrastructure, FBI Director Says 2 hours ago | www.reddit.com
cybersecurity
All versions of Crush FTP are vulnerable 4 hours ago | www.reddit.com
action april crushftp cybersecurity +10
Cyber Awareness 5 hours ago | www.reddit.com
adjust asking can certificate +9
Security awareness VS human risk management - why the term you use matters 7 hours ago | www.reddit.com
awareness computers cybersecurity focus +14
USPS Scam SMS - Link Discussion 7 hours ago | www.reddit.com
cybersecurity domain domain name link +10
Top cybersecurity stories for the week of 04-15-24 to 04-19-24 9 hours ago | www.reddit.com
ciso cyber cyber security cybersecurity +8
Cyberattack Takes Frontier Communications Offline 12 hours ago | www.reddit.com
com communications cyberattack cybersecurity +2
Antivirus: Essential tool or outdated tech for Cyber Pros? 13 hours ago | www.reddit.com
antivirus antivirus software community cyber +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Solution Architect

@ Civica | London, England, United Kingdom
View on infosec-jobs.com

Information Security Officer (80-100%)

@ SIX Group | Zurich, CH
View on infosec-jobs.com

Cloud Information Systems Security Engineer

@ Analytic Solutions Group | Chantilly, Virginia, United States
View on infosec-jobs.com

SRE Engineer & Security Software Administrator

@ Talan | Mexico City, Spain
View on infosec-jobs.com
View more jobs