Skip to content

Commit 2d99aca

Browse files
pedrosousaOxyjun
authored and
RebeccaTamachiro
committed
[Page Shield] Clarify alert handling (#21666)
--------- Co-authored-by: Jun Lee <[email protected]>
1 parent 283da5d commit 2d99aca

File tree

1 file changed

+4
-2
lines changed

1 file changed

+4
-2
lines changed

src/content/docs/page-shield/best-practices/handle-an-alert.mdx

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -58,9 +58,11 @@ In this case, in addition to the steps indicated below, the best approach is:
5858

5959
## 3. Check the script reputation
6060

61-
If Page Shield considers the resource’s domain a "malicious domain", it is likely that the domain does not have a good reputation. The domain may be known for hosting malware or for being used for phishing attacks. Usually, reviewing the domain/hostname is sufficient to understand why you received the alert. You can use tools like Cloudflares [Security Center Investigate](https://dash.cloudflare.com/?to=/:account/security-center/investigate) platform to help with this validation.
61+
If Page Shield considers the resource’s domain a "malicious domain", it is likely that the domain does not have a good reputation. The domain may be known for hosting malware or for being used for phishing attacks. Usually, reviewing the domain/hostname is sufficient to understand why you received the alert. You can use tools like Cloudflare's [Security Center Investigate](https://dash.cloudflare.com/?to=/:account/security-center/investigate) platform to help with this validation.
6262

63-
If Cloudflare's internal systems classified the script as containing "malicious code", external tools may not confirm the detection you got from Page Shield, since the machine learning (ML) model being used is Cloudflare-specific technology. However, you can re-run Page Shield’s ML model against the script source code, by using Cloudflare’s [Security Center Analyze](https://dash.cloudflare.com/?to=/:account/security-center/investigate/analyze) tool to confirm the match.
63+
If Cloudflare's internal systems classified the script as containing "malicious code", external tools may not confirm the detection you got from Page Shield, since the machine learning (ML) model being used is Cloudflare-specific technology.
64+
65+
If you believe that Page Shield's classification is a false positive, contact your account team so that we can further improve Page Shield's underlying technology.
6466

6567
## 4. (Optional) Analyze the script content
6668

0 commit comments

Comments
 (0)