Trend Micro is aware of a potential detection issue with Deep Security Update 17-020 (DSRU ID : 17-020). We are currently investigating the issue and will update this article with further details as they become available.
Recommended Action
Trend Micro released an updated Deep Security rule DSRU 17-021 to mitigate the potential detection issue. Customers are advised to update to the latest Deep Security rule.
Temporary Workaround
If you are unable to update to the new rule, change the IPS rule's action to Detect Only mode:
- Access the Deep Security Manager (DSM) web console.
- Go to the Policies tab > Common Objects > Rules Intrusion Prevention Rules.
- Search for the rule "1008332" and open its properties.
- In the General tab, tick the Detect Only check box.
- Click Apply and OK.
The procedure above should set the action for this rule to "Detect Only" once triggered.