Adobe Creative Cloud installer is flagging as Malicious

Report · Oct 18, 2022

Hello,

We attempted to run the latest available Adobe Creative Cloud available from the Admin Console and our antivirus software (FortiEDR) flagged the installer as malicious due to a handful of unsigned files. Is this a known issue? Please advise.

Thanks!

Report · Oct 18, 2022

Hello @jonathonr21308024

The package created from the admin console is not notarized/signed but the package downloaded by the Adobe Package Downloader on the Mac device will take care of Apple's requirements and the app installers themselves are all properly signed.

You can check this article for deploying Adobe packages: https://helpx.adobe.com/enterprise/using/deploy-packages.html

Report · Oct 18, 2022

Hi TechBurner, sorry for the confusion. This was flagged by FortiEDR on a Windows 10 based PC, not a Mac. Therefore, our environment doesn't fall under the purview of Apple's requirements.

Report · Oct 18, 2022

Then I think it is expected behavior as the packages from the Admin Console is not notarized or signed.

Report · Oct 19, 2022

Thank you for your response. I would like for this issue to get escalated so that the appropriate team can review it and address it. How would I go about creating a support case for this issue? I can provide all of the relevant information including the third-party vendor feedback that flags the file(s) as malicious.

Report · Oct 19, 2022

By looking into the screenshot, it seems that the error is coming from the FortiEDR software vendor only. This error might be a false positive. You can raise a ticket from the Adobe admin console by going to the Support tab with all the details and screenshots. Kindly contact your internal IT team if you do not have access to the console.

Report · Oct 19, 2022

The screenshot I shared includes the analysis from 3 different vendors showing the installer as a possible threat. Antiy-AVL, NANO-Antivirus and Fortinet are all flagging the installer as a possible threat, virus or a trojan.