BitDefender GravityZone flags/blocks Huntress Plugin install
I just tried to push Huntress via Gorelo Plugin to a client with BitDefender Cloud Security + ATS and received a Malware Outbreak notification for Heur.BZC.Boxter.151.F98A7BEB in powershell.exe.
The alerts all correlated to the Huntress push attempts, and adding an exclusion for powershell.exe allowed a subsequent installation, however that's not an exclusion I want in a anti-malware Policy.
Is there a better work around for this Plugin deployment and is this expected behaviour from Bitdefender?
4 Replies
Hi mate, this is a question for BitDefender — can you please run this by them? Feel free to cc me in or similar: mikel@gorelo.io
while you're at it, ask Bitdefender if they are still storing all the passwords for the partner portal in clear text like they were doing when they got hacked back in 2017?
You can then determine a decision as to if you really want to entrust your client's security to a company which doesn't even care enough about security to even hash passwords on a public facing portal
Hmmm, interesting info about Bitdefender, thank you @lemachet . How did I not know about this, I have been a Bitdefender reseller for around 10 years & had not heard about it. Funnily enough, I had a support call with Bitdefender yesterday and they needed to access my partner portal. Also, in relation to question from @b1naryn0mad , I have had a host of issues with Bitdefender blocking Gorelo processes and have had to report false positives to them to resolve the issues.
i used to be as well. and you know what, I never heard it from them. never, ever, not once. I tried to login one day and my password didn't work and i had to do a reset. that's all i ever actually heard from them.