ESET Customer Advisory 2020-0014
October 1, 2020
ESET recently discovered an increasing number of false positive alarms in ESET Enterprise Inspector. Upon investigation, a fixed module was prepared and will be released soon.
It has come to ESET’s attention, via both internal and external sources, that ESET Enterprise Inspector consoles started to report an increase in false positive alarms, such as “Injection into browser process”, coming from various executables. The alarms may have also been received in duplicate.
After immediate investigation, ESET found that this behavior was caused by two recently added attack type detections related to code injection.
A fix was prepared in the form of updated HIPS support module, version 1401. It was distributed to customers using the pre-release updates on September 30 and a full roll-out will follow in the coming days. The module is loaded by the product automatically, thus no action is necessary from the customers’ side.
ESET Enterprise Inspector
Version 1.0 (October 1, 2020): Initial version of this document