I wanted to check and see if anyone else is experiencing a large number of false positives associated with SONAR.SuspLaunch2
It's already identified three different services we run at our company as being malicious and quarantined them which in result took them offline. I have since added an exception for each on of these files and restored the file to make it functional.
My concern though is that it could hit more services or it may have already hit more services and I have just not been made aware of them yet.
Anyway to basically setup a rule to ignore this specific type of Risk? I don't want to disable SONAR completely nor do I want to lower the settings of SONAR if not necessary. It's worked fairly well up until this one specific Risk it is identifying.
Thanks,
Mike