[False Positive] Exploit:JS/HuanJuanEK.A! is everywhere
Hi,
I have just turned on my router and after 2 minutes, f-secure started to block all non-ssl websites. I tried to browse http website but immediately sign of Exploit:JS/HuanJuanEK.A!xxxxx popped up. I got scared and turned off router and got new ip and again it happened. I am seeing lots of activity about this exploit from f-secure map here:worldmap3.f-secure.com
Should I be worried about this? I couldn't find any information about it. How a network can be infected like this?
Edit: Seems like updating F-Secure product solves the issue however we are waiting a statement from F-Secure.
False Positive: Exploit:JS/HuanJuanEK.A:
Comments
-
I'm guessing as I don't work for fsecure. It is most likely a legitimate windows service trying to update but the cloud service is treating it as malware. It seems extremely likely. The other virus vendors that I have products with aren't reporting anything, granted all my other products are Linux based.
-
This explains something http://worldmap3.f-secure.com/
-
Update from F-secure:
It was false positive and is fixed now. Just update your virus definition:
https://www.f-secure.com/weblog/archives/00002779.html -
@dgf wrote:This explains something http://worldmap3.f-secure.com/
You just made my day... ...and made me cry a little.
(I created an account here just to say...)
Thank you kind stranger. lol
And a happy new year!