Microsoft Security Essentials update blocks

False-positive forces users to make exceptions.

Microsoft's latest Security Essentials update inadvertently warned Internet Explorer (IE) users off

Microsoft Security Essentials customers across the world began reporting on its user forum Wednesday that was being blocked within IE by a pop up message warning that it contained the Blackhole exploit kit, considered to be a serious malware threat.

What has turned out to be false security alerts -- labelled false-positives by antivirus companies -- began occurring shortly after Microsoft's latest security update, which fixed 21 vulnerabilities across its software.

While the warning could have meant was hosting a legitimate threat, the company has since clarified that on February 14 it introduced an incorrect detection for "Exploit:JS/Blacole.BW", referring to Blackhole.

Microsoft has recommended that Security Essentials customers download the latest definitions, noting that signature versions 1.119.1988.0 and higher include the update that corrects the problem.

The error on Redmond's part forced some customers to add and its related local domains such as to an exception list that bypassed its own definition.

Microsoft's false-positive error was first reported by security blogger, Brian Krebs.

Follow @CSO_Australia and sign up to the CSO Australia newsletter.

Join the CSO newsletter!

Error: Please check your email address.

More about GoogleMicrosoft

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Liam Tung

Latest Videos

More videos

Blog Posts

Market Place