Due to the recent incident in which some MSP's were compromised by malicious actors, Webroot agent commands including "download & run a file" have been disabled from the GSM. While I can understand the need for this on a temporary basis until a true 2FA method is implemented, I was informed by a support representative that this feature will be disabled for the foreseeable future and may never return. The fact remains that this whole incident falls on a small amount of MSP's who weren't using Webroot's "MFA" , and were most likely using poor credentials. Furthermore, had Webroot implemented a true 2FA as it's been requested for years, this was totally avoidable situation.
I feel that you're essentially punishing the majority of your client base by removing a core feature of Webroot due to bad decisions made by a handful of people. We've used this feature frequently for smaller clients and is one of the primary reasons we initially decided to use Webroot and continue to use it to this day.
I would really like an answer as to whether or not this feature will be re-enabled going forward. Even if this ends up being feature that's automatically disabled by default, and requires us to open a support ticket with Webroot or contact them to have it enabled, signing a waiver acknowledging risks, etc, we don't care. However, we absolutely need to have this feature. This will be a determining factor for us in continuing to use Webroot or looking for a replacement anti-virus solution.