I received a malware warning letter today and a text earlier this week.
We have quite a few devices in the house (4 macs, 1 chromebook, 1 dell, 4 echo dots, 3 ipads, a sonos system, 3 phones, a bunch of IoT devices, 2 internet TVs, 2 NAS drives, a Tado heating system and a printer that all connect to the network. I've run malwarebytes checker on the macos devices and came up with nothing (the dell is a work laptop and locked down). I've read that some people have tried wiping their devices and still get the alert so rather than going down that path as it will take me ages to do it I'd like to try and identify which device it is using tcpdump or wireshark. I'd like to get more info about the traffic so I can do this.. Wiping and reinstalling form backups might just bring the malware back so need some more info please.
Not across all devices on the network as I'm not aware of a product that would do that.
I think it might be my NAS drive though. I'd had it unplugged for a week or so after doing some tidying up and after I added it back on to the network my internet speed dropped to dial up speeds across all devices. I unplugged it and everything went back to normal. I need to investigate further though. That's why more info from virginmedia regarding the type of malware or traffic (destination IP addresses perhaps) would be helpful.
So to figure this out I setup a virtualized untangle firewall ng on my mac mini using virtualbox. I bought a usb to ethernet dongle so I could sit the mac between the virgin hub and my taotronics mesh wifi router. After setting everything up I ran the firewall for a day and nothing sinister was reported. I'd kept the NAS drive off the network at this point. Then I switched the TaoTronics router for the NAS Drive so that was the only device going through the firewall and left it running overnight. Bingo!
Did you ever get a reply to this. I am in a very similar situation. It would be extremely helpful if I could tell what time the attack was detected so I could limit the number of devices I need to look into (e.g. I installed a new Mesh WiFi three days ago (issue?) and I had a friend connect to the network for several hours yesterday)...
The fact I spend £50 a month (and have done for 3 years) and can't speak to a human being when contacted with a threat of being turned off is just AWFUL customer service.