Security News > 2022 > April > Microsoft Defender flags Google Chrome updates as suspicious
Microsoft Defender for Endpoint has been tagging Google Chrome updates delivered via Google Update as suspicious activity due to a false positive issue.
According to Windows system admins reports [1, 2, 3, 4], the security solution began marking Chrome updates as suspicious starting last evening.
In a Microsoft 365 Defender service advisory issued after reports of these alarming alerts started showing up online, Microsoft revealed that they were erroneously triggered by a false positive and not due to malicious activity.
"Admins may receive a false positive alert for Google Update on Microsoft Defender for Endpoint monitored devices," Microsoft said.
One month later, it mistakenly displayed "Sensor tampering" alerts linked to the Microsoft 365 Defender scanner for Log4j processes.
Other similar Defender for Endpoint issues include alerts of network devices infected with Cobalt Strike and Chrome updates as PHP backdoors, both caused by false-positive detections.
News URL
Related news
- Google Chrome Beta Tests New DBSC Protection Against Cookie-Stealing Attacks (source)
- Google Chrome Adds V8 Sandbox - A New Defense Against Browser Attacks (source)
- Google Chrome: Security and UI Tips You Need to Know (source)
- Google Chrome's new post-quantum cryptography may break TLS connections (source)
- Google Chrome is getting native support for YouTube-like video chapters (source)
- Google Chrome emergency update fixes 6th zero-day exploited in 2024 (source)
- Google fixes one more Chrome zero-day exploited at Pwn2Own (source)
- Google Cloud Next 2024: New Data Center Chip and Chrome Enterprise Premium Join the Ecosystem (source)
- Kaiser Permanente handed over 13.4M people's data to Microsoft, Google, others (source)
- Microsoft, Google do a victory lap around passkeys (source)