On Tuesday, Google had released the latest version of the Chrome browser 88.0.4323.146 for Windows, MacOS and Linux to patch several security loopholes.
As first reported by ZDNet, according to the screenshot shown above, Defender ATP is detecting the Chrome sl.pak language file in both Chrome 88.0.4324.104 and 88.0.4323.146as containing a generic backdoor trojan named “PHP/Funvalget.A.” Several users using the Microsoft Defender ATP security platform took to Twitter to report the issue and question Microsoft if the detections were “false positives”.
— Dark Defender (@ShadyDefender) February 3, 2021
— W. David Winslow (@wdwinslow) February 3, 2021
— itquartz (@itquartz) February 3, 2021 Microsoft acknowledged the issue stating it was an automation error and it is now resolved. “We’ve corrected an automation error that incorrectly classified the installation package as malware,” said a Microsoft spokesperson. To clear the current cache and trigger an update, system admins are advised to use a batch script that runs the following commands as an administrator to unblock the installer for the latest Chrome version: cd %ProgramFiles%\Windows Defender MpCmdRun.exe -removedefinitions -dynamicsignatures MpCmdRun.exe -SignatureUpdate