Ignore Threat Detection - Android

Just trying out BD on my mobile, did a scan and found some software that it has flagged as a threat. It is not. How do I get BD to ignore this, when I used norton it had a button that you clicked to ignore but I can't locate anything like that for BD. Any help would be great. TIA.

Answers

  • Gjoksi
    Gjoksi Defender of the month mod

    Hello.

    According to @agozob, who works for Bitdefender:

    "There is no option to exclude a certain path or app from detection in Bitdefender Mobile Security and it is unfortunately not a priority for us to implement such a feature. This is mostly because the detected threats are not automatically removed on Android (like they are on Windows for instance) so they can simply be ignored. Even though it might seem simple, it would take quite a bit of effort to implement this functionality and people very rarely manifested the need for it. It makes much more sense for us to focus on what makes a difference for the majority of our users.".

    In other words, there isn't any option to exclude files, folders or apps from the scanning process or ignore detected threats.

    Regards.

    @Alexandru_BD Anything to add here? Thanks.

  • Hi,

    Nothing to add here, I think you summed it up very well.

    Regards

    Premium Security & Bitdefender Endpoint Security Tools user

  • I think I understand, just to confirm, a feature found on other suppliers is not a priority for BD as the offending file will not be auto removed. It would take a while to implement, and people are not asking for it.

  • Flexx
    Flexx mod
    edited January 31

    Could you confirm the detection name of the threat that Bitdefender Mobile Security has detected, as well as the name of the application involved? Is it the 'Android.TestKey' detection?

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

  • Hi Flexx, thanks for the follow up, appreciate it. 2 apps mainly to do with root, call recorder has the Android.TestKey and Magisk has RiskWare.Agent.

  • Flexx
    Flexx mod
    edited February 1

    The detection of Android.TestKey typically occurs when a user is using a modified (mod) version of an Android application. While not all applications with these characteristics will trigger detection, some do. This type of detection functions as a behavior blocker rather than a signature-based detection created by malware researchers.

    Additionally, the Android.RiskWare.Agent detection identifies applications that may pose a risk but are not inherently malicious.

    If you are using Android rooting applications, be aware that they are commonly flagged as malicious. This is because these applications breach the security framework of the operating system by gaining unauthorized privileged access (root access). Rooting can expose your device to various vulnerabilities, such as unauthorized application installations and increased susceptibility to malware. Consequently, many security vendors classify rooting applications as potentially harmful or outright malicious.

    You can still submit these applications to Bitdefender malware research team for reanalysis. However, since they are Android rooting applications, there is a high likelihood that the detection will persist. Bitdefender currently does not provide an exclusion list feature in its software that allows users to bypass detection for specific applications.

    If you intend to root your device, the recommended approach is as follows:

    1. Uninstall the Bitdefender application from your device.
    2. Root your Android device securely.
    3. Reinstall the Bitdefender product after completing the rooting process.

    If you believe a website or file has been incorrectly blocked by Bitdefender, you can submit the details to our malware researchers by filling out the form at the link below:

    https://www.bitdefender.com/consumer/support/answer/29358/

    If the website or file is found to be incorrectly blocked, the detection will be removed within a maximum of 72 hours. However, if the detection persists after 72 hours, the website or file will be considered malicious, as determined by our malware researchers, and the detection will remain.

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

  • Thanks, Flexx that explains how it works but doesn't really help me with my question. Thanks again,