An obfuscated command line sequence was identified was detected by Microsoft Defender for Endpoint

Occasional Visitor

we are getting a bunch of "An obfuscated command line sequence was identified was detected by Microsoft Defender for Endpoint " alerts from ATP that are triggered by SenseIR.exe itself. These seem to be false positives. Is anyone else having this problem and what's the best way to prevent them?

0 Replies