Security News > 2021 > February > Microsoft Defender ATP detects Chrome updates as PHP backdoors

Microsoft Defender ATP detects Chrome updates as PHP backdoors
2021-02-03 16:17

Microsoft Defender for Endpoint is currently detecting at least two Chrome updates as malware, tagging the Slovenian localization file bundled with the Google Chrome installer as a malicious file.

Even though multiple Microsoft security accounts were tagged on Twitter and the company was also contacted to provide a statement regarding this ongoing issue, Redmond hasn't yet provided an official reply.

Pak language file being tagged as a backdoor, Microsoft Defender for Endpoint automatically blocks the detected files using quarantine as a remediation action.

Microsoft has stated that the issue was an automation error and is now resolved.

"We've corrected an automation error that incorrectly classified the installation package as malware." - a Microsoft spokesperson.

Go into Defender's directory using a command prompt opened as admin: cd %ProgramFiles%Windows Defender.


News URL

https://www.bleepingcomputer.com/news/security/microsoft-defender-atp-detects-chrome-updates-as-php-backdoors/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 480 75 2308 5127 264 7774
PHP 9 1 43 113 123 280