Stuff: windows 11, 64Bit (current update), BitDefender (current).
Is this a real catch?
Hello,
I'm not really familiar with that app, so I did a quick search and it looks like it's an open-source app that works with the latest versions of Firefox and enables you to export all your stored passwords to CSV or JSON. Correct me if I'm wrong. Now, if the app can actually be trusted, this could be an incorrect detection.. A bit more context on the module that sounded the alarm, Advanced Threat Defense continuously monitors the applications and processes running on your computer. It monitors suspicious activities such as copying files to important Windows operating system folders, executing or injecting code into other processes, multiplying them, changing the Windows registry, or installing drivers. Each action is scored, and every process receives a danger score. If the overall score for a process reaches a certain threshold, Bitdefender makes the decision to block that application that 99% of the time turns out to be malware.
However, even if the number of false positive detections is very low, ATD can sometimes block a trusted process or application IF it performs threat-like actions, so if it behaves like malware would do. It's a feature that continuously monitors running processes to identify anomalies in apps behavior and correlates different suspicious behaviors to significantly improve detection. This method is different from traditional malware detection, which involves identifying malware using the virus signature database.
If you suspect an incorrect detection in this case, I would recommend to send a sample to Bitdefender Labs for analysis, and if there are no reasons for concern, the detection can be removed. You can use the form available at the link below to report this as a false positive:
https://www.bitdefender.com/consumer/support/answer/29358/
Once confirmed, false alarms are corrected within hours.
I hope the information is useful.
Regards
