NEW – Windows Defender scares users with warnings about Mimikatz and Cobalt Strike
NEW – Windows Defender scares users with warnings about Mimikatz and Cobalt Strike-
The warnings is false and were due by an incorrect rule to the software.
Users of the Microsoft Defender Advanced Threat Protection (ATP) security solution reports receiving warnings about the Cobalt Strike and Mimikatz threat, which in fact turns out to be false.
Microsoft Defender ATP antivirus is to only for corporate users with a valid Microsoft 365 E5 license. Also, Microsoft Defender ATP helps corporate users stay protected from cybersecurity threats. Such as malicious apps and dangerous websites that can work to steal information. The platform also enables information security professionals to prevent, detect, and investigate cybersecurity incidents in enterprises.
Furthermore, Microsoft Defender ATP has caused some users to panic by showing several warnings about the dangerous threat Cobalt Strike. Other users reported seeing warnings about Mimikatz. In both cases, the notifications were false.
Presumably, the problem was due to an incorrect rule passed to Defender ATP, and Microsoft resolved the issue within a few hours.
“We have addressed an issue that was causing false positives and pin notifications that some customers might receive,” a Microsoft spokesman said.
Note that, Cobalt Strike is a penetration testing tool often by attackers for its advanced capabilities, also including attacks by Ryuk, Sodinokibi, and other ransomware. Mimikatz is a post-exploitation tool to steal passwords from compromised systems. It has also been used by many cybercriminal APT groups.
That’s all on NEW – Windows Defender scares users with warnings about Mimikatz and Cobalt Strike
WE ARE HERE FOR SERIOUS BUSINESS, WE DO NOT TOLERATE TIME WASTERS AND BEGGARS TRYING TO BEG OR SCAM US OF OUR PRODUCTS. Payment is Upfront, Our services are not free CONTACT US FOR PURCHASE/INQUIRIES, WE RESPOND ALMOST INSTANTLY : WHATSAPP: sudohackers.com CLICK HERE EMAIL: [email protected] EMAIL US NOW ICQ: sudohackers.com CLICK HERE TELEGRAM: sudohackers.com CLICK HERE