We have updated our detection logic in our security cloud to further improve the situation. If you have disabled Security Cloud, we recommend to enable it.
We plan to continue releasing regular updates to our Capricorn engine tomorrow, 29th of March. Subscribe to this incident to receive a notification about the release.
Posted Mar 28, 2023 - 11:27 UTC
Update
The number of false positives has significantly decreased since the rollback on Friday, 24.3.
We continue to work on a permanent solution.
Posted Mar 27, 2023 - 09:31 UTC
Investigating
We received a number of reports of increased false positive detections in the format of HEUR/AGEN.13* after a database update on the 22nd of March.
We have rolled back the update and are working on a permanent solution.
This incident affected: WithSecure Business Suite (Endpoints (Clients & Servers)) and WithSecure Elements Endpoint Protection (Endpoints (Clients & Servers)).