Office Hours: Webroot and COVID-19 August 11, 2020

  • 4 August 2020
  • 8 replies
  • 192 views

Userlevel 7
Badge +48

Hello Webroot Community, 

I wanted to create a space for us to come together and discuss Webroot and COVID-19.

Consider this our office hours. 

In case you might have missed it, we created a page here where we’ll keep a running list of articles, blog posts, and other pieces of content about our COVID-19 response.

If you have specific questions on what we’re doing as a company during the pandemic and our tips for how you can stay cyber resilient in these uncertain times. 

Please add your questions below or join us Tuesday, August 11, 2020, at 1:00 PM - 1:30 PM MT.


This topic has been closed for comments

8 replies

Userlevel 7
Badge +48

Hello, again Webroot Community! I hope you're having a great week. 

This is where you can ask your COVID and Webroot related questions and we’ll do our best to answer them. 

 

Here are the questions that have been submitted so far this week: 

Other than RDP what are the three major attacks cyber hackers are using right now? - James W. 

What remote connect software are people using other than RDP? - Mike M.

Are there plans for Webroot-based RDP endpoint protections? - David Y.

How do we best enforce security for partners working from home over RD Gateway or VPN? - Matt K.

What plans are there for product enhancement during Covid19 crisis. Will Webroot be moving into the EDR space as well? - Stephan M.

Userlevel 4
Badge +3

What remote connect software are people using other than RDP? - Mike M.

There are a number of different solutions on the market. I personally know of MSP’s using LogMeIn and these days even Microsoft Teams has that capability to share and allow control. And, some of the better known solutions are – GoToMyPC, Splashtop and RemotePC.

The thing we’ve stated in the past is it’s difficult to fully secure RDP and so better to use an alternative with 2FA or MFA so you have secured remote access.

Userlevel 4
Badge +3

Are there plans for Webroot-based RDP endpoint protections? - David Y.

All I can say in this public forum is we are constantly looking at ways of helping MSP’s being more secure and we see looking at securing RDP as a way of doing so.

Userlevel 4
Badge +3

What plans are there for product enhancement during Covid19 crisis. Will Webroot be moving into the EDR space as well? Stephan M.

I could be cheeky and just say lots but we are progressing with quite a large number of product enhancements. In fact our releases have increased during COVID. With our security training we’ve more than doubled the courses since January and we are adding new COVID phishing simulations and lures plus other relevant training at a rate of almost every 2 weeks now.  We made all the training courses available during the trial period and lots of enhancements around setting up a series of training events. We also added MS Azure AD to make auto-enrollment and ongoing user management even easier.

With DNS we’ve added native DoH  (DNS over HTTPS) so when users use DoH enable browsers that offer privacy over the site requested we can still filter that request but retain the privacy of the request, ideal for remote workers and adding a really easy and effective layer of internet security that compliments endpoint.

In our endpoint security we have launched much better Script and fileless attack protection about 10 weeks ago within our new Webroot Evasion Shield. We did ship this switched ‘off’ by default just so MSPs could test using a new Detect and Report (but do not remediate policy)  before switching it on to detect and Remediate - we’ve been surprised how slowly MSPs are turning this essential defenses on (so a reminder here to do so).  We also plan to add more prediction, prevention and protection capabilities this Autumn. And, we also have a new UI/UX on the way too, plus all the work on Apple Mac’s new Big Sur OS.

So yes, lots on enhancements going on all the time ! 

Userlevel 7
Badge +24

 

Other than RDP what are the three major attacks cyber hackers are using right now? - James W. 

 

Macro document being enabled by the user to download and run malware is definitely #1

Next biggest threat is Phishing been growing rapidly and only further accelerated with pandemic and everyone at home. 

3rd is BYOD. Both of the top threats rely on the user failing checks. And now with many users on their personal devices the potential attack vectors are much higher in success rate of working. Having users educated and using corporate machines with security suites, group policies, access control,VPN, 2fa etc are going to help dramatically. If you can’t ensure the full scope, mke sure to implement what you can and make sure to have multi-layered security, 2fa every account and VPN at the very least.

Userlevel 7
Badge +24

 

How do we best enforce security for partners working from home over RD Gateway or VPN? - Matt K.

 

If you are asking which is better it depends. 

Typical VPN usually means full network access while RD Gateway has different gateway controls that only certain persons access to certain resources.

Userlevel 4
Badge +3

Other than RDP what are the three major attacks cyber hackers are using right now? - James W. 

Adding to Tyler’s  views (which as he works in threat are a better view of what’s current than mine), but I see is:

  1. Phishing (where we’ve seen huge and continuing growth in 2020)
  2. DDoS (generally DNS attacks are on the rise)
  3. Ransomware (usually via phishing but also exploit and RAT based)
Userlevel 7
Badge +48

Thanks again to @GeorgeA and @TylerM for answering questions and spending a little time with us today. 

If anyone has any additional questions, be sure to stop by next Tuesday, August 18 at 1:00 PM MT. or add your questions here and we’ll do our best to answer all of them.

Until next week, stay resilient!