cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Mcafee MWG How to block Crypto Currency Traffic

Hi,

Witch cathegory or signature MWG uses to identify Crypto Mining traffic (as CryptoNight, coinhive, etc)?

It's possible to block it globaly on MWG and create reports (or alert) to manage this kind of threat?

1 Reply
Reliable Contributor pcoates
Reliable Contributor
Report Inappropriate Content
Message 2 of 2

Re: Mcafee MWG How to block Crypto Currency Traffic

From what I've found sites like coinhive will be categorized as Resource Sharing and/or PUPs (potentially unwanted programs).    coinhive belongs to both of these categories.

You can reference the category descriptions in the Trusted Source Category Set 4 referece:

https://kc.mcafee.com/corporate/index?page=content&id=PD22571

 

I'm hoping that we'll see a category update in the near future that will include a specific category for this so we can identify these sites more explicitly.

 

So currently I would say if you're blocking resource sharing and PUPs  you're probably blocking these sites and then you could create a report in Content Security Reporter for these categories.

ePO Support Center Plug-in
Check out the new ePO Support Center. Simply access the ePO Software Manager and follow the instructions in the Product Guide for the most commonly used utilities, top known issues announcements, search the knowledgebase for product documentation, and server status and statistics – all from within ePO.