Help
FortiSOAR Discussions
DHNX
New Contributor II

Created on ‎07-22-2025 02:59 AM Edited on ‎07-22-2025 02:59 AM

MalwareBazaar Feed Connector Not Working – API Now Requires Authentication

Hi  Community,

 

I'm currently facing an issue with the MalwareBazaar Feed Connector (v1.0.0-8606) in FortiSOAR. The connector is consistently failing with the following error:

An exception occurred [401:] Connector :: malwarebazaar-feedV1.0.0

image.pngimage.png
After checking the latest changes on the MalwareBazaar platform, it seems that the API at https://mb-api.abuse.ch/api/v1/ now requires an authentication key (Auth-Key) to be passed in the request headers. While the endpoint itself hasn't changed, requests without a valid API key are now returning a 401 Unauthorized response.

It looks like the current connector doesn't support this new authentication requirement, which is likely the cause of the failure.

My Questions:
1. Is Fortinet planning an update to this connector to support authenticated API access?

2. Is there any official workaround or guidance available to manually include the Auth-Key in the requests (perhaps via a custom connector)?

3. Has anyone else in the community implemented a custom solution for this feed?

DP
DP
Labels:
79
0 Kudos
0 REPLIES 0
Announcements

Welcome to your new FortiSOAR Community!

View More

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.