[CA7633] False positives in ESET Enterprise Inspector fixed

ESET Customer Advisory 2020-0014
October 1, 2020
Severity: Minor


ESET recently discovered an increasing number of false positive alarms in ESET Enterprise Inspector. Upon investigation, a fixed module was prepared and will be released soon.


It has come to ESET’s attention, via both internal and external sources, that ESET Enterprise Inspector consoles started to report an increase in false positive alarms, such as “Injection into browser process”, coming from various executables. The alarms may have also been received in duplicate.

After immediate investigation, ESET found that this behavior was caused by two recently added attack type detections related to code injection.


A fix was prepared in the form of updated HIPS support module, version 1401. It was distributed to customers using the pre-release updates on September 30 and a full roll-out will follow in the coming days. The module is loaded by the product automatically, thus no action is necessary from the customers’ side.

Affected products

ESET Enterprise Inspector

Feedback & Support

If you have feedback or questions about this issue, please contact us using the ESET Security Forum, or via local ESET Technical Support.

Verision log

Version 1.0 (October 1, 2020): Initial version of this document