You can blacklist URLs in the Advanced Threats Protection policy.

1. Go to Policy > Web > Advanced Threats Protection.

2. Click the Advanced Threats Policy tab.

3. In the field for Blocked Malicious URLs, enter URLs you want to blacklist for your organization.

4. Click Save and activate the change.