Hi, we have recently installed Small Office Security.
I remote desktop into the server on a daily basis from my home office.
I have noticed that the Network Attack Blocker is showing the IP address of my LOCAL computer and listing it as an “Attacking computer IP” at random times (usually when I am logged in and active).
It is listing various Local TCP ports as being targeted e.g. 1433, 65180, 63975
It shows “Network attack detected” - TCP - Blocked : Scan.Generic.PortScan.TCP - Blocked
I do not notice anything being blocked from my perspective as an RDP user.
My concern is that MY local machine is infected somehow and trying to do something nefarious?
IS this actually something to be concerned with? Or a false positive?