[clamav-users] false positive on MBL_82485625.UNOFFICIAL for Google Drive links sent as attachments
Steve Basford
steveb_clamav at sanesecurity.com
Wed Mar 24 16:42:11 UTC 2021
On 24 March 2021 14:16:33 Robert Kudyba <rkudyba at fordham.edu> wrote:
> Using clamav-milter 0.103.1 with sendmail on Fedora 33, we had several
> emails quarantined with the MBL_82485625.UNOFFICIAL. All they contained was
> a link forwarded as an attachment of a Google Drive folder.
>
Hi Robert,
It's best to report this to Malware Patrol themselves.
I do have the ability to ignore this signature from the mirrors... but they
change the signature name... so it's a bit like whack a mole.
>
Cheers,
Steve
Twitter: @sanesecurity
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20210324/b7618b0e/attachment.htm>
More information about the clamav-users
mailing list