Is this a known false positive? This reddit page seems to indicate the problem is widespread.
Solved! Go to Solution.
As pointed out above, here is an update on this.
Per the link: A recent update to Windows Defender has caused it to incorrectly identify SupportAssist as malware. Dell is working closely with Microsoft to resolve this issue and correct the false positive.
* User with SupportAssist auto updates enabled should not be impacted
* User with SupportAssist auto updates disabled should update Microsoft Defender virus definitions to version 1.359.1239.0 or higher
I got the crytosteal warning also and that Reddit thread has become pretty active with people asking about it. Anyone from Dell can you post here to let us know if this is a false positive?
Windows Defender is flagging this so this might be a Microsoft issue vs. a Dell issue.
When I got this notification I went into protection history and selected the action to remove the threat and it said that the remediation is incomplete and failed. Then I did a full scan, got the notification and when I selected the remove action protection history shows that the threat was removed. Another full scan now shows no threats detected. So false positive with inconsistent removal results?
I have a 9510 as well, about a month old running Windows 11. Mine should be up to date, as I run updates as soon as I can. I just received this notification a few minutes ago.
These sure appear to be false positives, but it would be great to get confirmation.
As an aside, Dell hasn't done itself any favors with the apparent typo in the related executable name (note the missing "i" after the second "d" in "DellSupportAssistRemedationService.exe")