Microsoft Defender reportedly tagging Zoom and Google as malicious sites
source link: https://siliconangle.com/2023/03/29/microsoft-defender-reportedly-tagging-zoom-google-malicious-sites/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Microsoft Defender reportedly tagging Zoom and Google as malicious sites
Microsoft Corp.’s security platform Defender, which comes installed as standard with Windows, is having a bad day today, with users reporting that the service is tagging sites such as Google and Zoom as being malicious.
When it works properly, Defender is meant to stop users from visiting malicious sites, but it goes without saying that Google.com isn’t malicious. It’s unknown why Defender has suddenly gone rogue. At least for now, Microsoft doesn’t seem to know why either.
According to the official Microsft 365 Status Twitter account, Microsoft is investigating why legitimate URL links are being incorrectly marked as malicious by the Microsoft Defender service. In addition, Microsoft is looking into why some of the alerts are not showing content as expected.
The Microsoft support team confirmed that users can still access legitimate URLs despite the false-positive alerts. As part of an investigation into the problem, Microsoft said it was “reviewing diagnostics such as network telemetry data to verify the root cause and identify a path to resolution.”
How widespread the issue is among users is not clear. The Register reported that one organization had received hundreds of malicious URL alerts for Zoom.us links, all of which take time to investigate. A post on Reddit also detailed various users who have experienced the problem.
“Doing internet-scale scanning of domain and URL data at internet-scale speed is extremely challenging to get right,” Sean McNee, vice president of research and data with internet intelligence specialists DomainTools LLC, told SiliconANGLE. “The best automation for doing this work always has the possibility for triggering ‘false positives’ — identifying benign URLs as being malicious. The goal of all of these systems, as always, is to bring that false positive rate as low as possible while still identifying maliciousness accurately when it appears.”
McNee added that though he was concerned to see these popular URLs flagged, “I applaud Microsoft for acting as quickly as they did to rectify the situation and hope they publish more information about the causes later on.”
Image: Microsoft
A message from John Furrier, co-founder of SiliconANGLE:
Show your support for our mission by joining our Cube Club and Cube Event Community of experts. Join the community that includes Amazon Web Services and Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and many more luminaries and experts.
Join Our Community
Click here to join the free and open Startup Showcase event.
We really want to hear from you, and we’re looking forward to seeing you at the event and in theCUBE Club.
Click here to join the free and open Startup Showcase event.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK