AnsweredAssumed Answered

Exclude Windows updates from Threat Emulation

Question asked by Philipp Philippov on Apr 5, 2018
Latest reply on May 14, 2018 by Thomas Werner

Hello Guys,

What approaches do you use to exclude multitude of .cab files which are part of Windows and Office updates from Threat Emulation without blocking all the .cab files in general?

I tried to add a global exception to threat prevention policy based on sites (*.windowsupdate.com and etc), but it seems to me it does not work.

I am very curious about best practises regarding this issue.

 

Thanks in advance.

Outcomes