Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Other security for Windows, Mac, Linux
Deep Instinct | Deep Learning AI Cybersecurity Platform
Message
<blockquote data-quote="simmerskool" data-source="post: 1075931" data-attributes="member: 61091"><p>This morning, I see a new block by DeepInstinct in reference to Firefox.exe</p><p>"...was identified as a remote code injection and is now blocked</p><p>Security Engine= Behavioral analysis</p><p>Security Module Remote code injection"</p><p></p><p>probably safe to assume this is a false positive, only my 2d in about 9 months, & IIRC I think the first one was also remote code injection(??). So think this is NOT exactly a false+ as I think the detection is real, but it's "false" in that I need to create an exception for firefox. But also wondering if something changed in how firefox goes online & interacts with the system. I was not running firefox when this popup block appeared, so I assume it was firefox checking for updates...? <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" /> Any other Di users see this...<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" /><img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" /></p><p>PS sorry no screen shot snip it as popup was on my hardware win10, and I'm online in VM.</p><p></p><p>Edit: perhaps of interest, Firefox 122.0.1 and as I said above it was not running, so I clicked its icon to open it, and it open normally and I checked "About" and it opened normally too... <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" />So that raises some questions in my mind about the Di "detection" / block... <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" /></p></blockquote><p></p>
[QUOTE="simmerskool, post: 1075931, member: 61091"] This morning, I see a new block by DeepInstinct in reference to Firefox.exe "...was identified as a remote code injection and is now blocked Security Engine= Behavioral analysis Security Module Remote code injection" probably safe to assume this is a false positive, only my 2d in about 9 months, & IIRC I think the first one was also remote code injection(??). So think this is NOT exactly a false+ as I think the detection is real, but it's "false" in that I need to create an exception for firefox. But also wondering if something changed in how firefox goes online & interacts with the system. I was not running firefox when this popup block appeared, so I assume it was firefox checking for updates...? :unsure: Any other Di users see this...:unsure::unsure: PS sorry no screen shot snip it as popup was on my hardware win10, and I'm online in VM. Edit: perhaps of interest, Firefox 122.0.1 and as I said above it was not running, so I clicked its icon to open it, and it open normally and I checked "About" and it opened normally too... :unsure:So that raises some questions in my mind about the Di "detection" / block... :unsure: [/QUOTE]
Insert quotes…
Verification
Post reply
Top
