ROP exploit prevented in Firefox/Chrome browser

Hello yeowkm ,

Please have a look at this article
You can check your Event viewer for any 911 events to see if you can find more details regarding the detection.

As a next step, please follow this article.


Regards,

the event viewer shows 911 as hitmanpro

Hello,

I also have this same issue, see below for a workaround.

Current workaround is to either disable Branch Tracing in your threat protection policy, OR to opt out of site isolation in Chrome, which contains the features we're currently conflicting with.

For instructions on how to opt out of site isolation in Chrome, please go to chrome://flags/#enable-site-per-process, and search for "Site isolation trial opt-out", and select "Opt-out" and save.

Best Regards,

Steve

Hi yeowkm,

Thank you for the screenshot. Although adding exclusion should help you for the time being, we recommend against it unless the detection is a sure-shot False Positive. I would recommend creating a Support ticket with SDU logs as reporting this would be helpful to white-list this detection globally if required.