On, Defender alerted a Behavior:Win32/PowEmotet.SB finding to him while printing.
Defender seems to trigger something so that Microsoft Office opens.Ĭhristopher Mage then recreated this in a virtual machine. In addition, Constantin has sent me a link to the following tweet from security researcher Kevin Beaumont, which addresses these observations. Since all admins are happy tomorrow morning…. Microsoft has gone into the toilet with a Defender definition and every Office start is now probably a Defender false positive…. German blog reader Constantin contacted me by email an hour ago (thanks for that) and alerted me to a problem on Windows related to Microsoft Defender for Endpoint with the following lines:ĭefinitely worth a nice article ,how Microsoft screwed up again and scared all admins.
0 kommentar(er)
