lsass.exe infection found by Anti-Malware. Unable ...

Explore New Wave of Web Based
DDoS Attacks and Mitigations

Watch Now!

Four Ways to SASE

Watch Now

It's Here!
CPX 2025 Content

Get It Now

Remote Access VPN – User Experience
Help us with the Short-Term Roadmap

Take the Survey

CheckMates Go:
What is UPPAK?

LISTEN NOW

Create a Post

Hi everyone,

This is the situation. Endpoint security finds lsass.exe as an infection and cures it when RDP to a server.

I have tried to exclude but it doesn't help

Any suggestions and also why does it react like this for RDP? Low confidence and low severity.

1 Reply

Please raise a TAC ticket to have it investigated, seems like an FP.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

User

Count

Upcoming Events

Sort by:

Tue 13 May 2025 @ 04:00 PM (CEST)

German Session: NIS2- Compliance: Effiziente Vorbereitung und Umsetung

Virtual

Tue 13 May 2025 @ 04:00 PM (CEST)

Maestro Masters EMEA: Quantum Maestro Architectures and Optimization

Virtual

Tue 13 May 2025 @ 02:00 PM (EDT)

Maestro Masters Americas: Quantum Maestro Architectures and Optimization

Virtual

Wed 14 May 2025 @ 10:00 AM (CEST)

ATAM 360°: Elevate Your Cyber Security Strategy with Proactive services - EMEA

Virtual

Wed 14 May 2025 @ 03:00 PM (CEST)

NIS2 Readiness: Assess, Secure, and Comply with Confidence

Virtual

Wed 14 May 2025 @ 10:30 AM (BRT)

Transforme sua Segurança de Rede com Agilidade e Eficiência

Virtual

Tue 13 May 2025 @ 04:00 PM (CEST)

Maestro Masters EMEA: Quantum Maestro Architectures and Optimization

Virtual

Tue 13 May 2025 @ 02:00 PM (EDT)

Maestro Masters Americas: Quantum Maestro Architectures and Optimization

Virtual

Wed 14 May 2025 @ 10:00 AM (CEST)

ATAM 360°: Elevate Your Cyber Security Strategy with Proactive services - EMEA

Virtual

Wed 14 May 2025 @ 03:00 PM (CEST)

NIS2 Readiness: Assess, Secure, and Comply with Confidence

Virtual

Wed 14 May 2025 @ 10:30 AM (BRT)

Transforme sua Segurança de Rede com Agilidade e Eficiência

Virtual

Wed 14 May 2025 @ 05:00 PM (CEST)

ATAM 360°: Elevate Your Cybersecurity Strategy with Proactive services - AMERICAS

In-Person

Thu 15 May 2025 @ 09:00 AM (IDT)

PA In-Person CloudGuard Workshop (CGNS, WAF, & API Security)

In-Person

Tue 20 May 2025 @ 11:30 AM (PDT)

Las Vegas: Check Point Hybrid Mesh

In-Person

Wed 21 May 2025 @ 11:30 AM (MST)

Tempe, AZ: Check Point Hybrid Mesh

In-Person

Tue 03 Jun 2025 @ 09:00 AM (CEST)

CheckMates LIve France - Workshop Check Point Quantum

In-Person

Tue 03 Jun 2025 @ 06:00 PM (EDT)

Montreal: CPX Recap

In-Person

Tue 10 Jun 2025 @ 06:00 PM (EDT)

Quebec City: CPX Recap

CheckMates Events

Are you a member of CheckMates?

lsass.exe infection found by Anti-Malware. Unable to exclude