This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Martin_Hofbauer
Contributor
Contributor
‎2023-09-10 02:24 AM

E87.31 (File Reputation) detects latest Bitwarden update (2023.8.3) as malicious

Windows Desktop Client Update from Bitwarden password manager is detected as "malicious" and was quarantined.

Windows 22H2

Endpoint Security Client E87.31
( including following blades: Anti-Bot and URL Filtering, Anti-Malware,Compliance, Anti-Ransamwae, Behavioral Guard, FDE, TE and Anti-Exploit, RA VPN)

Replication is easy: Download Windows App: 
https://vault.bitwarden.com/download/?app=desktop&platform=windows

Check Point File Reputation popup appears and informs, that download file was quarantined

It is detected as "Trojan" with malware family "ca12MJdg"

UPDATE: Just checked with Virustotal and CheckPoints Online TE Scanning service (https://threatpoint.checkpoint.com/ThreatPortal/emulation), both does NOT show any issue with that file.


Have some else the same experience ?

Thank you
Martin

0 Kudos
2 Replies
Chris_Atkinson
Employee Employee
Employee
‎2023-09-10 11:28 PM

Please report this to TAC Support if not already and they will handle it.

https://help.checkpoint.com 

CCSM R77/R80/ELITE
0 Kudos
Martin_Hofbauer
Contributor
Contributor
‎2023-09-18 02:29 PM
In response to Chris_Atkinson

For me it is too much effort to report a false positive result by opening an SR. Why isn't there an easier way?

BTW: Bitwarden for Windows Version 2023.8.4 is out , and there is no "Trojan" alert any more


0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events