-
Posts
533 -
Joined
-
Last visited
Reputation
0 NeutralAbout Rsullinger
Contact Methods
-
Website URL
https://www.malwarebytes.com
Recent Profile Visitors
14,489 profile views
-
Dylanfreak started following Rsullinger
-
Office 2013/2016 being blocked
Rsullinger replied to DanJordan's topic in Malwarebytes Anti-Exploit for Business
Hey DanJordan, We have a new build we would like you to test to see if it fixes this issue for good. Can you try installing this build over the top and see if the issue persists: https://malwarebytes.box.com/s/d0vin0ofmbkwfx4jr7ucn87vvhphmrj7 -
Being Spammed by Anti-Exploit
Rsullinger replied to torrey's topic in Malwarebytes Anti-Exploit for Business
Welcome to the forums! Can you please collect these logs for us so we can look into the issue further: Thank you, -
Hey Scoutt, Can you please collect the logs further for this. We want to see what is happening since those two have been disabled for you:
-
MBAE 1.12.1.124 has removed default Chrome shield.
Rsullinger replied to Spritesprint's topic in Anti-Exploit Beta
Hey Spritesprint, The google chrome shield was the only one we touched due to this issue. So any other browser we currently protect will not be affected unless the other chromium browsers get the same treatment. I can see if we can see about Vivaldi. Ill send that feedback to the team to consider going forward. -
MBAE 1.12.1.124 has removed default Chrome shield.
Rsullinger replied to Spritesprint's topic in Anti-Exploit Beta
Hello Spritesprint, Unfortunately it is not a mistake. We removed protection for Chrome due to Google’s new policy against code injection into Chrome. Because of this policy, we would not be able to protect chrome in that same way going forward. This blog from them explains as to why they are doing this: https://blog.chromium.org/2017/11/reducing-chrome-crashes-caused-by-third.html -
Hey REGITDept, The team thinks it may be a FP but we want to collect some additional logging on this. I am going to send you a PM to collect these logs so look for that soon.
-
Process Hollowing - Excel - Potential False Positive
Rsullinger replied to Oscars's topic in Exploit
Hey Oscars, I am going to reach out to you in a PM to get some information. Let me know if you have any questions. Thank you, -
Acrobat issues with 1.12.2.109
Rsullinger replied to AdamM's topic in Malwarebytes Anti-Exploit for Business
Hey Everyone, We have a test build we would like you to try. Can you please try this version and let us know if it fixes the adobe issue you are running into: https://malwarebytes.box.com/s/b3gu0vewughayu63sus1y8dbainqiqzp If you run into any issues, let me know asap! -
v1.12.1.100 clash with Acrobat Reader DC.
Rsullinger replied to nukecad's topic in Anti-Exploit Beta
Hey Nukecad, I am going to send you a PM to try and get some debug logs for our team. Thank you, -
Hey Jaws98, What is causing it is hard to say, but our program is blocking it because java is attempting to run a cmd/script of some sort. We don't care what it is running, just that it is trying to make that type of call. Just from that piece of code it doesn't look malicious. Just to be safe, you may want to try re-installing the java software and get it on the latest to see if it still occurs.
-
Hey everyone, I am going to reach out to you to collect some debug logs on this issue. The development team wants to see how this is triggering. You should see a PM from me with some instructions on how to do this. Thank you, Ron
-
Hey Sandy, It will not affect them. The log we write to will overwrite itself after a certain amount of data (this prevents it from being a huge file). It will not affect the user and they will never see it. Just need to make sure that when the alert happens, we collect the logs as it will overwrite if to much time has passed.