• News
  • Security
  • Products
  • About Seqrite
Blogs on Information Technology, Network & Cybersecurity | Seqrite Blog
  • News
  • Security
  • Products
  • About Seqrite
Home  /  Cybersecurity  /  Your Data and Devices are safe with SEQRITE
Your Data and Devices are safe with SEQRITE
19 November 2022

Your Data and Devices are safe with SEQRITE

Written by Seqrite
Seqrite
Cybersecurity

On 19th November at 8:17 am, we became aware of a false positive detection on excel files and the same getting quarantined on some customer devices.

We sincerely regret the inconvenience caused. We immediately took necessary actions investigating the matter, thereby initiating a root cause analysis.

We would like to share that this issue was promptly resolved by 2:26 pm. The update package with the fix was made available and applied at the time of update to automatically restore the impacted files.

Based on our investigation, we would like to assure all our retail, enterprise, and government customers that their data safety is our utmost priority. Our cybersecurity solutions with comprehensive protection and sophisticated controls are fully capable to neutralize any such threat.

What led to this false positive detection?

  • The issue was caused because of a signature that was targeted to detect XML files being used by malware in wild. Inadvertently though, the signature also detected XML content within some legitimate excel files, thus resulting in this False Positive.
  • Many signatures are written every day. They are pushed out to end devices in form of AV Updates, multiple times a day. Each update cycle picks all the signatures that were newly created since the last cycle and combines them into a package. This package is then released to customers, and is downloaded & applied on end devices via live update functionality.
  • Each update package, before release, goes through extensive testing to ensure its contents will not have any side effects on the end user devices. If the contents of the update package have a False Positive risk, an alert is generated. And, when that happens, the respective signature is removed from the package. In this case though, owing to a human error in a non-automated step, the alarm was not generated. Thus, resulting in release of the offending signature.

How do we intended to mitigate this occurrence in future?

  • Majority of the pre-release testing happens via automated systems. These automations are being enhanced to include the step where the error happened.
  • Additionally, the entire testing suite is being thoroughly reviewed. As part of this review, other human intervention steps would be considered for inclusion in automation as well. Also, this review will help identify any other blind spots.
  • Existing monitoring systems will be enhanced to cover the identified blind spots. Also, there are existing checklists that are used in steps requiring human intervention would be enhanced to cover any current gaps.

Please write to us at support@quickheal.com for any clarification.

 Previous Post9 Best Practices to Avoid Ransomware Infection
Next Post  Calling from the Underground: An alternative way to penetrate cor...
Seqrite

About Seqrite

Follow us for the latest updates and insights related to security for enterprise networks. Subscribe to our newsletter to stay...

Articles by Seqrite »

Related Posts

  • ZTNA Use Cases and Benefits for BFSI

    May 19, 2025
  • Market Guide for Choosing the Right ZTNA Solution

    May 14, 2025
  • Protect What Matters Most with Data Discovery and Classification

    May 12, 2025
Featured Authors
  • Seqrite
    Seqrite

    Follow us for the latest updates and insights related to security for...

    Read more..
  • Sanjay Katkar
    Sanjay Katkar

    Sanjay Katkar is the Joint Managing Director of Quick Heal Technologies...

    Read more..
  • Mahua Chakrabarthy
    Mahua Chakrabarthy

    A tea connoisseur who firmly believes that life is too short for dull content....

    Read more..
Topics
apt (19) Cyber-attack (35) cyber-attacks (58) cyberattack (16) cyberattacks (13) Cybersecurity (322) cyber security (31) Cyber threat (33) cyber threats (48) Data (11) data breach (55) data breaches (28) data loss (28) data loss prevention (34) data privacy (11) data protection (24) data security (15) DLP (49) Encryption (16) endpoint security (107) Enterprise security (17) Exploit (14) firewall (11) GDPR (12) hackers (11) malware (76) malware attack (23) malware attacks (12) MDM (25) Microsoft (15) Network security (22) Patch Management (12) phishing (27) Ransomware (67) ransomware attack (30) ransomware attacks (30) ransomware protection (13) security (11) Seqrite (33) Seqrite Encryption (27) Seqrite EPS (33) Seqrite Services (16) UTM (34) Vulnerability (16) windows (11)
Loading
Resources
  • White Papers
  • Datasheets
  • Threat Reports
  • Manuals
  • Case Studies
About Us
  • About Seqrite
  • Leadership
  • Awards & Certifications
  • Newsroom
Archives
  • By Date
  • By Category
Loading

© 2025 Quick Heal Technologies Ltd. Cookie Policies Privacy Policies