Nastiest Malware 2023
Welcome to the Endpoint Protection and management console Discussion Forum!
Good day, why do I need to do a clean up on an endpoint if it has already been automatically remediated? Thank you
I just can’t say enough bad about Webroot. I blew it away two years ago because of all the problems and lack of support. So here I am two years later and am still being haunted. I uninstalled it from all my endpoints but it did not remove itself from SecurityCenter. It is still in the WMI. That really doesn’t surprise me. It is obvious that Webroot has no business getting in to the virus arena but anyway….. is there an automated way to remove the Webroot entries in the WMI?
I am using Management ConsoleCE 22.4. Just created a new site-only admin, and assigned admin permissions on that site only. However, after logging in to the new admin, the new admin can view the list of all other admins.Is it a bug in the Management Console?
Hello, Recently we have seen fileless malware come up on some endpoints. PowerShell is launching a script that loads a text file, that spawns a remote connection back to an attacker.I understand the Evasion Shield is supposed to detect this. Is there a way we can block PowerShell scripts with Webroot, or even better, where we can be alerted if a PowerShell script launches, or can we block it, etc? Thank you
Some of our endusers (not all) are experiencing problem with the Webroot Web Threat Shield extension in Microsoft Edge (the new Chromium based version). They get a request to enter the keycode. That should not happen, as the environment is fully managed by us as MSP. Is this a known bug?
Hello everyone,My company is using Webroot SecureAnywhere for Business. We are trying to deploy an application that may require us to turn off webroot. Everything I’ve seen shows how to do so manually via the client’s GUI. This is too time consuming as we have dozens of endpoints. Is there a way to shutdown webroot via powershell (or any other automated way), install what I need, then turn it on again? I know the security implications of this and understand why this may not even be possible. But I just wanted to make sure.
I have a user having issues and the only thing that changed was installing webroot. I want to disable the agent remotely to see if the users notices a difference. I created a test policy that allows the agent to be shutdown. Is there a way I can run a terminal command to shutdown the agent?
Anyone seen a guide for interpreting the wrlog.log?
Hi,Does Webroot Business Endpoint Protections works in Smartphones/Devices?Thank you!
Outdated Understanding of Cybercrime is Risky for Financial Markets Today, [url=http://citywire.co.uk/global/cyber-crime-now-poses-systemic-risk-to-markets-report-warns/a692485]CityWire Global reported[/url] that global financial markets are under a growing threat of cybercrime, according to the latest report from the International Orgnaization of Securities Commissions (IOSCO). [i]‘Reliance on an out-dated understanding of what cyber-crime entails, a perception of safety due to containment of past cyber-attacks, or assumptions around the limited capabilities of cyber-criminals today–may mean we end up “bringing a knife to a gun fight” in the future,’ said the report’s author Rohini Tendulkar.[/i] [i] [/i] This data seems to be in line with the thoughts of many other analysts. At this year's [url=https://community.webroot.com/t5/Events-Conferences/Gartner-Security-amp-Risk-Management-Summit-2013/td-p/43930#.Uel4I40cfQg]Gartner Security and Risk Management Summit[/url
[h3]AGENT CHANGES IN BUILD 8.0.2.127 - March 27th 2013 [/h3][img]http://sw.nohold.net/Webroot/Images/wsab_endpoint_logo.png[/img] Improved[list] [*]Agent shutdown speed [*]Behavior logging in WIndows Event Logs [*]Identity Shield functionality on Windows Server 2008 [*]Kernel keylogger protection [*]Migration process for Prevx users to SecureAnywhere [/list] Added[list] [*]A registry value of type DWORD named NoStatistics under HKCUSoftwareWRData which, when set to 1, disables the behavior statistics on the status screen [/list] Fixed[list] [*]An issue with changed settings and local database data on shutdown [*]Compatiblity with Jeeves GARP software [*]Identifying cloud managed configuration settings [/list] Other [list] [*]Minor UI changes[/list] All Contents Copyright © 2013
Because [url=http://www.latimes.com/business/technology/la-fi-tn-1-10-americans-html-std-study-finds-20140304,0,1188415.story#axzz2v1QcBT6r]1 in 10 Americans think HTML is an STD[/url].
They have some nice online courses to help you out: [url=http://www.microsoftvirtualacademy.com/training-courses/getting-started-with-powershell-3-0-jump-start]http://www.microsoftvirtualacademy.com/training-courses/getting-started-with-powershell-3-0-jump-start[/url]
Webroot's own [b]Darren Niller[/b] posted this article over on [url=http://community.spiceworks.com/product/4895-webroot]our Spiceworks page:[/url] Take a look and post your thoughts! [h1][url=http://community.spiceworks.com/topic/262158-is-your-aging-endpoint-security-giving-you-gray-hairs]Is your aging endpoint security giving you gray hairs?[/url][/h1] The signature-based approach to protecting endpoints from cyberthreats has served organizations well for many years—some say perhaps too many. The increasing rate of breaches and infections represents just one symptom of a solution whose time has passed. If you are an IT professional in charge of managing endpoints, you likely understand the pain. [b]No signatures available for “zero-day threats”[/b] Developed almost two decades ago, legacy anti-virus/anti-malware technology uses large client applications to search for known “bad” patterns of data within executable files. It does this by comparing a signatu
Backblaze is showing off the new version of their storage pod: [url=http://blog.backblaze.com/2014/03/19/backblaze-storage-pod-4/]http://blog.backblaze.com/2014/03/19/backblaze-storage-pod-4/[/url] It's nice to see the technology behind the scenes - they do a great job of sharing info on drive reliability and storage costs.
if they've been hacked: [url=http://www.csoonline.com/article/742575/11-sure-signs-you-39-ve-been-hacked]http://www.csoonline.com/article/742575/11-sure-signs-you-39-ve-been-hacked[/url]
Get 'em while they're hot! [url=http://4sysops.com/archives/free-e-books-for-windows-administrators/]http://4sysops.com/archives/free-e-books-for-windows-administrators/[/url]
More than 55,000 new malicious software programs are registered [i]each day [/i]by AV-Test an independent antivirus (AV) research institue. Any one of these can have a mild to devastating impact on the organization, randing from wasted IT staff hours to damages to consumer confidence or losses of dollars in the instance of a regulatory violation. In fact, the average organization experiences a malware attack every 73 days, Osterman Research found in a 2011 study, in which 44% of participants said that a single malware attack had cost them as much as $10,000, while another 27% reported financial impacts as high as $50,000. Too few IT decision-makers address malware threats adequately, chalking up security breaches as a cost of doing business, the researchers noted, adding, "The costs [of malware] are typically higher than many organizations realize, but with the right knowledge and technologies, it is possible to reduce the impacts of malware." Canalys Research has likew
Here's something really cool I've been working on and it's now nearly complete. This is going to be great for businesses with hypervisor labs: here's the link to the discussion and progress on Vmware's forum: [url=http://communities.vmware.com/thread/427502?start=0&tstart=0]http://communities.vmware.com/thread/427502?start=0&tstart=0[/url] Please check it out and feel free to additonally discuss it here as well! I hope this thread assists many people!
I use BackBlaze at home and they do a great job. Not only do they have great online backup service, they also sponsor [url=http://www.worldbackupday.com/]World Backup Da[/url]y. Walter Mossberg just did a [url=http://recode.net/2014/03/11/triple-coverage-back-up-your-computer-in-three-ways/]nice review[/url] of them. They do both consumer and business backups. They also do some really [url=http://blog.backblaze.com/2014/01/21/what-hard-drive-should-i-buy/]nice blog posts[/url] about reliability of hard drives and how they run their business. Their backup saved my bacon as the HD on my old iMac died. I had an external drive I backed up to with Time Machine, but it turned out that drive had errors as well. The online backup ended up doing the trick. Glad I was using belt and suspenders :)
They're simplifying their licensing: [list] [*][b]Free [/b] [*][b]Pro[/b] - $250 per administrator/year (req's key) The [b]Pro level will include[/b] the Basic subscription. [*][b]Enterprise[/b] - $500 per administrator/year (req's key + activation) The [b]Enterprise level will include[/b] what was formerly known as the Advanced subscription. The Enterprise level [b]also introduces multi-user support [/b]for Deploy and Inventory (starting in 3.1 versions). This is a commonly requested feature for our customers who have more than a single admin.[/list]More details [url=http://www.adminarsenal.com/pdq-licensing/]here[/url]. Anyone a current PDQ users? They seem to make a pretty good product.
Pretty scary stuff: [url=http://www.myce.com/news/microsoft-onedrive-for-business-modifies-files-as-it-syncs-71168/]http://www.myce.com/news/microsoft-onedrive-for-business-modifies-files-as-it-syncs-71168/[/url] found on [url=http://www.reddit.com/r/sysadmin/comments/23nx4o/microsoft_onedrive_for_business_modifies_files_as/]reddit[/url].
