Enterprise Security detecting files which were previously whitelisted
For example, there appears to be a previously whitelisted file ‘ipscan 2.12.exe’ (36faadc91c0929140825769d8736e4da0704b8aefe21503392463d6801e8a8eb) that still is detected by SES.
Steps performed:
- Go to Endpoint Security Dashboard -> Recent Devices with Unresolved Threats -> <computername> -> Malware Protection (17)
- Go to Investigate ->
Client versions previous to 14.3 RU1.
This is a known issue.
Upgrade the clients to 14.3 RU1 or higher to resolve this issue.