Microsoft Defender caught issuing false warnings about safe URLs

By Sofia Elizabella Wyciślik-Wilson
Published 1 year ago

Microsoft has confirmed an issue with Defender which resulted in users being shown warnings about URLs that were entirely safe. The emails advised admins that "a potentially malicious URL click was detected", with affected users complaining that legitimate URLs, such as Zoom meeting links, were being flagged up as dangerous.

In addition to the false positives, the "View alerts" link included in the warning emails sent out to admins failed to provide any further information that could prove useful.

See also:

Microsoft initiated an investigation into the problems, explaining that it was using telemetry data to determine what was going on.

In a tweet thread, Microsoft confirmed the issues and subsequent investigation:

We're investigating an issue where legitimate URL links are being incorrectly marked as malicious by the Microsoft Defender service. Additionally, some of the alerts are not showing content as expected. Further details can be found under DZ534539 within the admin center.
— Microsoft 365 Status (@MSFT365Status) March 29, 2023

We're reviewing diagnostics such as network telemetry data to verify the root cause and identify a path to resolution. Further detail can be found under DZ534539 in the Microsoft 365 admin center.
— Microsoft 365 Status (@MSFT365Status) March 29, 2023

The good news is that the cause of the problem has been identified, and Microsoft has been able to address the issue as it explains in a further tweet:

We determined that recent additions to the SafeLinks feature resulted in the false alerts and we subsequently reverted these additions to fix the issue. More detail can be found in the Microsoft 365 admin center under DZ534539.
— Microsoft 365 Status (@MSFT365Status) March 29, 2023

Image credit: monticello / depositphot o s

3 Comments

3 Responses to Microsoft Defender caught issuing false warnings about safe URLs

Pingback: Microsoft Defender caught issuing false warnings about safe URLs – NEUS CORP

Got News? Contact Us

Microsoft Defender caught issuing false warnings about safe URLs

3 Responses to Microsoft Defender caught issuing false warnings about safe URLs

Recent Headlines

Addressing digital transformation needs in the public sector [Q&A]

The psychological impact of phishing attacks on your employees

Canonical releases Ubuntu Linux 24.04 LTS 'Noble Numbat'

New tool lets enterprises build their own secure gen AI chatbots

Younger women are going into cybersecurity but more needs to be done

Politically motivated DDoS attacks on the rise

TCL 50 XL 5G Android smartphone hits Metro by T-Mobile: Big features, small price

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE