Would submitting false positives via the link above help with fine tuning the ML models? I have many false positives (installs, zip files, exe's, etc) that are flagged and causing issues with our employees workflow that I need to do something here to fix this issue shortly or I will have to roll these computers back to 12.1.6. My dilemma is here is that I cannot exclude file hashes. There are duplicates for a lot of the false positives I am seeing (due to technicians using the same tools) but each technician may store them in different folders on the hard drive. Therefore I'd have to build multiple exclusions for each individual instance of this file being detected. I can't even be proactive which is really disappointing.
There was an idea from a Symantec employee 3 years ago stating that file hash exceptions should be added to the product. Has there been any thought to this or progress?
I am willing to talk or work with anyone at any time to help resolve this issue. Just let me know how I can help. If you need a case number to look at, mine is 11364966. So far I haven't received anything that would help my issue other than a suggestion to use the whitlisting capability of system lockdown. This will not work for us as we do not have a generic list of applications or files on any of our computers since we are a support provider for a range of business class telecommunication systems and products.