We are running SentinelOne 24.2 on the Clients.
I wanted to inform the community that this virus scanner identifies KopiaUI in version v0.19.0 as a malicious running process.
I’ll run the backup on local and SMB targets. I’ll disable the update check.
Time to change your security software.
There is no problem with version 0.19.0
Only one obscure tool out of 59 reports a problem
on Virus Total
https://www.virustotal.com/gui/file/74d416652647173b8530fd9bfed0bbc15f197cb9e2ede21f4d98a946542b4789
Well…S1 is an enterprise grade system. Probably nothing someone runs on their private gear. First thing would be to contact your S1 admins and have them take a look at it. It may be than Kopia somehow triggers some alarms in S1, which either are new or your S1 admins have tightened their security settings. In the end exceptions can be configured if you can convince the S1 admins, that Kopia is a benign application.
Even better, Malicious.moderate.ml.score is a pretty well-known false positive result from Trapmine, as it’s only summarizing a score derived from machine learning that they’ve fed plenty of samples into, it’s not a “real” detection.