conorc

Support told me to turn off 'dropbox'. Do you know how to put in exclusions for pathways on a On-Demand Scan for macOS?

Would turning off Symbolic links possibly help with this?

We are seeing an issue on macOS (doesn't happen on Windows) where ESET is downloading all OneDrive/Sharepoint files while performing device scans, it is downloading on the OneDrive client. OneDrive has a 'files on demand' feature that saves disk space by allowing users to see the files but only downloads them when they are accessed. ESET sees these files/shortcuts and downloads them in order to scan. We need to keep 'files on demand' enabled. Is there anything we can do apart from excluding the Onedrive pathways?

Hi, We are seeing this being flagged on devices for homebrew-core as Ruby/CoinMiner.A https://github.com/Homebrew/homebrew-core/blob/HEAD/Formula/orgalorg.rb https://www.virustotal.com/gui/file/3013cc52a0937d977faf53d53d86fc54d99954f5086a1c5e2cfa5bf3ffdce390/details Is this detection a false positive? Thanks.

I am also seeing this issue with our devices.

Hey, We aren't using m1 chip yet but would like to participate, especially for the firewall functionality. DM me please and I can provide details. Thanks, Conor.

case closed. was a custom firewall rule in wrong order that never impacted us until DNS fallback was removed in version 8. thanks folks.

Hi, When we deploy this to anyone, their device can no longer resolve anthing. This is when they use the 'Obtain DNS server automatically' IPv4 setting on the Ethernet NIC. They have to use static DNS settings for it to work. When we roll back to 7.3.2044 it is resolved instantly, Thanks

What specific method for this do you mean?

so this will happen every time Microsoft make a change to the app and there is nothing we can do to prevent it. excellent.

Would just whitelisting /Applications/Microsoft Teams.app also allow all of the sub folders? /Applications/Microsoft Teams.app/Contents/Frameworks/Microsoft Teams Helper (Renderer).app/Contents/MacOS/Microsoft Teams Helper (Renderer)

No worries, trying to figure out if there is a way to whitelist a higher level of the directory so that if MS make more changes, then it won't be impacted. Any input @Marcos

They added a new app pathway in the latest update and it also needs allowed on the firewall, it is (Renderer) /Applications/Microsoft Teams.app/Contents/Frameworks/Microsoft Teams Helper (Renderer).app/Contents/MacOS/Microsoft Teams Helper (Renderer)