Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Endpoint Security

Buggy ESET Update Blocks Many Websites

ESET’s home and business customers took to the company’s forums earlier today to complain that they had been prevented from accessing a large number of websites after applying the latest product updates.

ESET’s home and business customers took to the company’s forums earlier today to complain that they had been prevented from accessing a large number of websites after applying the latest product updates.

Users reported not being able to access websites such as eBay, Amazon, MSN, Google, news websites from various countries, personal sites, and even ESET’s own support pages because their security product had detected JS/ScrInject.B and HTML/Refresh.BC Trojan infections.

Some complained that the buggy update prevented hundreds and even thousands of their endpoints from accessing important websites.

An investigation revealed that the malware detections were false positives caused by the virus signature database update version 13102. ESET initially advised both home and business users to roll back the virus signature database updates in their products. The security firm released update 13103 roughly five hours ago to properly address the problem.

Users who are unable to immediately apply the update have been advised to create temporary exceptions for the websites they want to visit. The exceptions should be removed after the update is installed.

“We would like to assure you than the problem pertained only to web browsing and no files on disks were affected. We apologize for the inconvenience,” ESET told customers.

It’s not unheard of for security product updates to cause problems for users. Last year, Symantec released a Norton update that caused the Internet Explorer web browser to crash. Shortly after, Panda Security issued an update that resulted in system, application and even files associated with Panda products being detected as malware.

Related: Microsoft Reissues Security Update Due to Outlook Crash

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Application Security

Google’s Threat Analysis Group (TAG) has shared technical details on an Internet Explorer zero-day vulnerability exploited in attacks by North Korean hacking group APT37.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Application Security

Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors...

Endpoint Security

Red Hat announced on Tuesday the general availability of a malware detection service for Red Hat Enterprise Linux (RHEL) systems.

Application Security

Computer maker Lenovo has started pushing security patches to address three vulnerabilities impacting the UEFI firmware of more than 110 laptop models.

Application Security

Microsoft’s security patching machine hummed into overdrive Tuesday with the release of fixes for at least 97 documented software vulnerabilities, including a zero-day that’s...