Fixed
We fixed an issue introduced in version 4.0.13 that caused agents to send the incorrect format of the following Microsoft Defender Antivirus events to the platform:
- 1006
- 1007
- 1008
- 1015
- 1116
- 1117
- 1118
- 1119
This issue also prevented InsightIDR from correctly parsing these events and stopped alerts for the Virus Alert - Malicious File On Terminal Service Client Network Share (Creates Investigation) and Virus Alert - A virus has been found on an asset (OFF) detections.