Ya looking at the timeline in my security tools on one of the devices supposedly affected there is nothing going on except for attempts at windows updates.     so unless MS is compromised this is almost certainly a false positive  ... View more