An administrator just submitted a newly found piece of spyware for WildFire analysis. The spyware passively monitors behavior without the user's knowledge.
What is the expected verdict from WildFire?
An administrator just submitted a newly found piece of spyware for WildFire analysis. The spyware passively monitors behavior without the user's knowledge.
What is the expected verdict from WildFire?
Grayware is the correct verdict when dealing with spyware in WildFire analysis. Although spyware passively monitors user behavior, it does not pose a direct security threat but might display otherwise obtrusive behavior. WildFire categorizes files that include adware, spyware, and Browser Helper Objects (BHOs) under the grayware category.
D. Grayware. Although this *is* an example of spyware, that is not one of the four possible WildFire verdicts. From Palo Alto, "Grayware typically includes adware, spyware, and Browser Helper Objects (BHOs)." https://docs.paloaltonetworks.com/wildfire/9-1/wildfire-admin/wildfire-overview/wildfire-concepts/verdicts.html
Don't you mean B. Grayware?
THIS is the explanation we all need. Thank you.
https://docs.paloaltonetworks.com/wildfire/10-0/wildfire-admin/wildfire-overview/wildfire-concepts/verdicts
bartbernini Highly Voted 11 months, 2 weeks ago <correction>B</correction> Grayware. Although this *is* an example of spyware, that is not one of the four possible WildFire verdicts. From Palo Alto, "Grayware typically includes adware, spyware, and Browser Helper Objects (BHOs)." https://docs.paloaltonetworks.com/wildfire/9-1/wildfire-admin/wildfire-overview/wildfire-concepts/verdicts.html
Grayware—The sample does not pose a direct security threat, but might display otherwise obtrusive behavior. Grayware typically includes adware, spyware, and Browser Helper Objects (BHOs).
Answer is GRAYWARE. The question is specifically asking for "VERDICT". There is NO verdict called "SPYWARE". "Spyware" is included within the "Grayware" Verdict. See Below. Benign Indicates that the entry received a WildFire analysis verdict of benign. Files categorized as benign are safe and do not exhibit malicious behavior. Grayware Indicates that the entry received a WildFire analysis verdict of grayware. Files categorized as grayware do not pose a direct security threat but might display otherwise obtrusive behavior. Grayware can include adware, spyware, and Browser Helper Objects (BHOs). Phishing Indicates that WildFire assigned a link and analysis verdict of phishing. A phishing verdict indicates that the site to which the link directs users displayed credential phishing activity. Malicious Indicates that the entry received a WildFire analysis verdict of malicious. Samples categorized as malicious can pose a security threat. Malware can include viruses, C2 (command-and-control), worms, Trojans, Remote Access Tools (RATs), rootkits, and botnets. For samples that are identified as malware, the WildFire cloud generates and distributes a signature to prevent against future exposure.
Answer is B Grayware —The sample does not pose a direct security threat, but might display otherwise obtrusive behavior. Grayware typically includes adware, spyware, and Browser Helper Objects (BHOs).
Spyware is a type of Grayware
Apologies correct answer is B
Answer is D
There is no "Spyware" verdict.
D is correct, the possible verdicts from Palo Alto are Benign, Graygare, Phishing and Malicious.
I meant B is correct
Verdict categories are Benign, Grayware , Phishing, Malicious https://docs.paloaltonetworks.com/advanced-wildfire/administration/advanced-wildfire-overview/advanced-wildfire-concepts/verdicts
answer B Grayware
malware and spyware verdicts do not exist in wildfire: and it is not phishing, so the only left is grayware. Answer B
Grayware —The sample does not pose a direct security threat, but might display otherwise obtrusive behavior. Grayware typically includes adware, spyware, and Browser Helper Objects (BHOs).
B. Grayware