Can't find an english language news source for this, but it seems that #Microsoft Defender is flagging files that contain short strings (like "Squeamish Ossifrage" or "malicious_x = %p") from the #Spectre PoC as malware: https://m.heise.de/security/meldung/Microsoft-stuft-das-PoC-Programm-zu-Spectre-als-boesartig-ein-3959995.html
This is obviously useless for actual threat detection, so are they trying to find people who are playing with the PoC code?
#infosec
Conversation
Notices
-
Alexander Bochmann (galaxis@mastodon.infra.de)'s status on Saturday, 03-Feb-2018 11:55:51 UTC Alexander Bochmann - @mcscx@quitter.se repeated this.