Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bug: 0.4.4 results in Windows Bitdefender flagging Gen:Variant.Tedy.258323 and moving Jan to quarantine #1483

Closed
1 of 4 tasks
dan-menlo opened this issue Jan 9, 2024 · 3 comments
Closed
1 of 4 tasks

bug: 0.4.4 results in Windows Bitdefender flagging Gen:Variant.Tedy.258323 and moving Jan to quarantine #1483

dan-menlo opened this issue Jan 9, 2024 · 3 comments
Assignees
@Van-QA @hiento09
Labels
P0: critical Mission critical type: bug Something isn't working
Milestone
v0.4.4

Comments

@dan-menlo
Copy link
Contributor

dan-menlo commented Jan 9, 2024
edited by hiento09
Loading

Describe the bug

  • 0.4.4 causes WIndows Bitdefender to flag Nitro as infected with Gen;Variant.Tedy.258323 and moved to quarantine
  • McAfee was not triggered, only BitDefender is triggered

image

Incident Log

  • 2:18am SGT: Hawke flags up Malware antivirus errors for 0.4.4 installation on Windows computers
  • 2:21am SGT: @0xSage responds in Discord
  • 2:35am SGT: Hawke confirms multiple people have experienced this error on fresh installs
  • 2:41am SGT: @louis-jan and @dan-jan revert 0.4.4 out of abundance of caution
  • Incident ongoing: to triage and investigate next day

Follow-ups

  • Reproduce 0.4.4 flag in Bitdefender
  • Investigate whether indeed malicious code or false positive (if fp, resolve but flag with Bitdefender)
  • Supply Chain attack?
  • Process improvement: How do we avoid this in the future
@dan-menlo dan-menlo added the type: bug Something isn't working label Jan 9, 2024
@xvsd
Copy link

xvsd commented Jan 9, 2024
edited
Loading

Looks like a false positive to me. Check here, here, and definitely here

@dev2devportal
Copy link

dev2devportal commented Jan 9, 2024
edited
Loading

Note: I was the one who reported this in Discord. I am normally on Linux systems, but it did not get flagged on my Windows 11 PC running McAfee and Microsoft Defender.
So far it was flagged on all BitDefender user systems at 3 different companies (half a dozen different users). BitDefender automatically "disinfected" it and wouldn't let the users do anything else.
Unfortunately only one user took a screenshot (so far).

@xvsd xvsd mentioned this issue Jan 9, 2024
Closed
@freelerobot freelerobot added the P0: critical Mission critical label Jan 10, 2024
@freelerobot freelerobot added this to the v0.4.4 milestone Jan 10, 2024
@freelerobot freelerobot assigned hiro-v and unassigned freelerobot Jan 10, 2024
@louis-menlo louis-menlo moved this to Planned in Menlo Jan 10, 2024
@hiento09 hiento09 moved this from Planned to In Progress in Menlo Jan 11, 2024
@hiento09
Copy link
Collaborator

#1529

@github-project-automation github-project-automation bot moved this from In Progress to Done in Menlo Jan 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Van-QA Van-QA

@hiento09 hiento09

Labels
P0: critical Mission critical type: bug Something isn't working
Projects
Menlo
Archived in project
Milestone
v0.4.4
Development

No branches or pull requests
8 participants
@dev2devportal @hiro-v @Van-QA @freelerobot @dan-menlo @louis-menlo @hiento09 @xvsd