Skip to main content
Question

Symantec DLP detect Upload.box.com URL as risky site.

  • May 22, 2025
  • 3 replies
  • 9 views
C
Forum|alt.badge.img

We used DLP Synmantec Solution and it detected that outlook seemed to upload some file to weird URL which is https://upload.box.com. Symantec DLP Rule detected it when outlook client upload some files to somewhere.

From the DLP log, I found below pattern log.

Target URL : https://upload.box.com/test.txt.  Even though we don't use box.com solution and we used another 3rd party outlook add-in for large attachment handling, why Symantec DLP detect this  URL https://upload.box.com 

Can I ask what upload.box.com is?

    3 replies

    C
    Forum|alt.badge.img

    Hi there, 

    Welcome to the Box Community!
     
    This would be something our Box Support team would like to look into and may require specific account information. 
     
    I've gone ahead and created a ticket for you so that an agent can work directly with you on looking into this. Please check your email for details.
     
    Thanks for your patience!
     
    Best,
    C
    Forum|alt.badge.img

    Thanks for update.

    One of our users uploaded "test.txt" via 3rd party attachment-addin solution in outlook desktop, not via box.com and symantec DLP detected it as https://upload.box.com/test.txt for target path and https://upload.box.com as recipient

     

    C
    Forum|alt.badge.img

    Hi there, 

    Apologies, it looks like the initial ticket I submitted did not go through so, I created a new ticket for you for this issue.

    Kindly check your email for details.

    Best,

    Terms of ServiceAccessibility statement