On Sunday morning, Microsoft rolled out Defender signature update 1.373.1508.0. This update included two new threat detections that even included Behavior: Win32/Hive.ZY. However, issues arose as this update was mistakenly identifying Google Chrome, Microsoft Edge, Discord, and other Electron app as ‘Win32/Hive.ZY’.
This version of Microsoft Defender was thus displaying false positive of Win32/Hive.ZY. Microsoft pushed out another version 1.373.1518.0. Users reported that this version continued to display false positive.
The latest reports bring in Microsoft Defender’s most recent version yesterday, 1.373.1537.0. According to reports, this version seemed to resolve the Win32/Hive.ZY false positive issue experienced by Windows users.
Reports stated that the false positive detections were widespread. Users complained and reported about the issue on BleepinComputer, Twitter and Reddit. They expressed that they experienced their systems displaying the detections everytime they opened their browser or any Electron app.
It is important to note that when Microsoft Defender displays these detections on opening up an app, the display received is a false positive. It is mistakenly identifying your device as infected.
To facilitate yourself to the latest update, 1.373.1537.0, which has been reported to have resolved the false positive issue, you can follow the following steps:
- As a Windows user you can open Windows Security from the Start Menu.
- Next click on Virus & Threat protection.
- Finally click on ‘Check for updates’ under Virus & Threat protection updates.
