Antivirus and CSO - Cyber Security Informer

Microsoft tells Exchange admins to revert previously recommended antivirus exclusions

CSO Magazine

FEBRUARY 24, 2023

Microsoft is advising Exchange Server administrators to remove some of the endpoint antivirus exclusions that the company's own documentation recommended in the past. The rules are no longer needed for server stability and their presence could prevent the detection of backdoors deployed by attackers.

Antivirus

Antivirus Cybersecurity

How to choose an endpoint protection suite

CSO Magazine

SEPTEMBER 28, 2021

Studies show that CSO readers are most likely to know that endpoint protection is the modern iteration of the antivirus tools of previous generations. Antivirus, more appropriately known as antimalware, has matured significantly since the days of dedicated antivirus servers, daily signature updates, and manually managed policies.

Antivirus

Antivirus CSO Spyware Phishing

8 top identity and access management tools

CSO Magazine

MAY 4, 2021

No organization would be caught without firewalls and antivirus scanners to catch low-sophistication attacks, but the real battle to protect the network has moved to the realm of identity and access management (IAM). [ 5 steps to simple role-based access control (RBAC) | Sign up for CSO newsletters ! ]

CSO

CSO Antivirus Firewall Cybersecurity

LockFile ransomware uses intermittent encryption to evade detection

CSO Magazine

AUGUST 30, 2021

The threat uses what researchers from antivirus vendor Sophos call “intermittent encryption,” meaning it only encrypts chunks of data inside a file instead of its complete contents. Get the latest from CSO by signing up for our newsletters. ] Get the latest from CSO by signing up for our newsletters. ]

Encryption

Encryption Ransomware CSO Antivirus

17 cyber insurance application questions you'll need to answer

CSO Magazine

JUNE 2, 2021

At first, most of the cyber insurance questions involved basic computer security and merely checked to see if we had firewalls and antivirus and not much else. Now the questions suggest that insurance providers understand that network security includes much more than antivirus software.

Cyber Insurance

Cyber Insurance Insurance Antivirus Firewall

BrandPost: How Much Risk Are You Willing to Take?

CSO Magazine

SEPTEMBER 30, 2021

I have seen macro changes such as the rotation of antivirus solutions from the endpoint to the gateway and back again, as well as the bundling of endpoint security products such as antivirus, antispyware, host intrusion prevention, and application control into an endpoint protection platform ( EPP ).

Antivirus

Antivirus Risk Encryption Technology

What is SIEM? Security information and event management explained

CSO Magazine

MARCH 16, 2022

SIEM software (pronounced ‘sim’; the ‘e’ is silent) collects and aggregates log and event data generated throughout the organization’s technology infrastructure, from host systems and applications to network and security devices such as firewalls and antivirus filters.

Antivirus

Antivirus Firewall Technology Software

Webroot files patent infringement claim against Trend Micro

CSO Magazine

MARCH 15, 2022

“This case involves patented technologies that helped to revolutionize, and have become widely adopted in, the fields of malware detection, network security, and endpoint protection” and are used in security products such as Webroot SecureAnywhere AntiVirus, it continued. To read this article in full, please click here

Marketing

Marketing Antivirus Technology Media

Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware

Security Affairs

NOVEMBER 23, 2020

Here’s how the malware execution sequence would appear to a Windows user: The “Windows NT is not supported” message shown in the screenshot, however, is a false error thrown by the malware in an attempt to fool both antivirus products and the end-user. The malware dropped by lib2.exe explains Castro.

Malware

Malware Antivirus Engineering Software

BrandPost: Slow EDR Rollout Requires a NG-IDS Compensating Control

CSO Magazine

OCTOBER 11, 2021

When Anton Chuvakin, then a Gartner Analyst, first coined the term endpoint detection and response (EDR) in 2013, most enterprises raced to replace antivirus (AV) with EDR.

Antivirus

Russia points finger at US for iPhone exploit campaign that also hit Kaspersky Lab

CSO Magazine

JUNE 2, 2023

In a separate report, Russian antivirus vendor Kaspersky Lab said that several dozen of its senior employees and upper management were targeted as part of the operation, although unlike the FSB, the company did not attribute the attack to any specific state.

Spyware

Spyware Antivirus

BrandPost: It’s Time to Take a Fresh Approach to Combat Phishing

CSO Magazine

APRIL 1, 2021

To date, combatting it involves upgrading antivirus and endpoint detection and response (EDR) software, while educating users not to click on “suspicious” attachments or links. Phishing has been around for 20 years, and it will continue as long as there is money to be made. We’ve been failing miserably.

Phishing

Phishing Antivirus Education Software

Microsoft Exchange Emergency Mitigation: What admins need to know

CSO Magazine

OCTOBER 6, 2021

Microsoft quickly released an Exchange On-premises Mitigation Tool (EOMT) along with automatic mitigation included in Microsoft Defender Antivirus and System Center endpoint protection. The recent zero-day attacks on Exchange showed that many firms weren’t up to date in patching and Microsoft realized that many were behind in updating.

Antivirus

Antivirus Internet Internet Risk

3 authentication-level protections for remote users and devices

CSO Magazine

FEBRUARY 9, 2022

The response is often to throw scanning engines and antivirus products at workstations, but all that does is delay boot up times and logging into the network. Instead of a somewhat nice and tidy domain tucked behind a series of firewalls and defenses, it is now connected to the same network as Alexa devices.

Authentication

Authentication Firewall Antivirus Engineering

Top Linux endpoint protection software

CSO Magazine

MAY 18, 2022

I've never felt a need for a Linux antivirus program. I've been running the Linux desktop since the great desktop debate was between C Shell and Bash. But, that's not to say that I thought I could get away without Linux desktop or server security. Far from it!

Software

Software Antivirus IoT Malware

4 ways attackers target humans to gain network access

CSO Magazine

MARCH 30, 2022

We hope that our antivirus or endpoint protection software alerts us to problems. I remember the infamous email-based computer worm , the “ILOVEYOU virus,” that infected fellow IT friends back in 2000. Those victims should have known better than to click on an email that said ILOVEYOU, but they did and had to clean up afterwards.

Antivirus

Antivirus Scams Technology Phishing

NEW TECH: Votiro takes ‘white-listing’ approach to defusing weaponized documents

The Last Watchdog

MARCH 13, 2019

The work duties call for them to open and deal with business documents, “and at the same time the CSO actually may be directing them to think twice before they open any document,” Grafi says. “So, Employees today receive mixed messages. So, the challenge becomes productivity versus security.”. Effective attacks.

Malware

Malware CSO System Administration Financial Services

North Korea’s Lazarus group uses vulnerable Dell driver to blind security solutions

CSO Magazine

OCTOBER 5, 2022

“The most notable tool delivered by the attackers was a user-mode module that gained the ability to read and write kernel memory due to the CVE-2021-21551 vulnerability in a legitimate Dell driver,” security researchers from antivirus firm ESET said in a recent report. This is the first ever recorded abuse of this vulnerability in the wild.

Antivirus

Antivirus Manufacturing Software

BrandPost: Measuring HP Sure Click Enterprise’s Return on Investment

CSO Magazine

FEBRUARY 23, 2021

Sure Click Enterprise’s isolation approach far exceeds the capabilities of detection and blocking technologies such as antivirus, whitelisting, web gateways, and sandboxes.

Antivirus

Antivirus Technology

How to keep attackers from using PowerShell against you

CSO Magazine

JULY 6, 2022

Rather than installing malicious software on your network that antivirus software might flag, attackers use the code already there to launch attacks. Living off the land is not the title of a gardening book. It’s the goal of attackers going after your network.

Antivirus

Antivirus Software Cybersecurity

Chinese APT group uses multiple backdoors in attacks on military and research organizations

CSO Magazine

AUGUST 10, 2022

The targets included industrial plants, design bureaus, research institutes, and government ministries, agencies, and departments, according to researchers from antivirus vendor Kaspersky Lab, which investigated the attack campaign.

Antivirus

Antivirus Government

How to manage Microsoft's Excel and Office macro blocking

CSO Magazine

JULY 20, 2022

I’ve seen many a phishing lure come in via web links, pretend cloud services, and other techniques that bypass traditional antivirus and file filtering. Because many of these attacks come via email, but not necessarily as email attachments, evaluate whether your phishing protection and user education are appropriate.

Antivirus

Antivirus Phishing Education

What Microsoft Defender can tell you about your network

CSO Magazine

MAY 18, 2022

At $3 per user per month, it takes the place of your traditional antivirus solution that you may have deployed in your office. Defender for Business makes it easier to deploy EDR in a reasonable fashion and in an affordable package. You can onboard workstations using a script, Intune or Group Policy.

Antivirus

Bye-bye best-of-breed?

CSO Magazine

JUNE 14, 2022

Those of you working in security in the early 2000s may remember installing independent firewall and antivirus software on every endpoint. One of those was the insistence on best-of-breed security technologies. Best-of-breed technologies were then combined as part of another time-honored principle—defense-in-depth.

Firewall

Firewall Antivirus Technology Software

Luna Moth callback phishing campaign leverages extortion without malware

CSO Magazine

NOVEMBER 21, 2022

As these tools are not malicious, they’re not likely to be flagged by traditional antivirus products,” the researchers wrote. To read this article in full, please click here

Phishing

Phishing Malware Social Engineering Antivirus

A CISO's Guide to a Good Night's Sleep

SecureWorld News

SEPTEMBER 30, 2020

For example, would you use antivirus alone as an endpoint security solution? While it is a well-established business practice to consolidate vendors, it is not a good security best practice to rely on one technology to mitigate the threats from an attack vector. The answer is definitely not.

CISO

CISO Penetration Testing Technology Antivirus

Not-so-customary customer service: Experts offer tips on vendor best practices

SC Magazine

MAY 3, 2021

said Dan Meacham, vice president of global security and corporate operations and CSO/CISO at film production company Legendary Entertainment. For instance, Stebila praised one of its past antivirus providers for being was to work “within the limitations of our yearly fiscal CAPEX vs OPEX budget.”.

Software

Software Engineering Media CISO

Cybersecurity industry reacts as antivirus pioneer John McAfee found dead

CSO Magazine

JUNE 24, 2021

antivirus pioneer John McAfee was found dead in a Spanish prison cell on Wednesday June 25, 2021. Sign up for CSO newsletters. ]. According to Spanish authorities, the cause of the 75-year-old’s death was suicide.

Antivirus

Antivirus CSO Cybersecurity Cryptocurrency

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Russian software engineer Eugene Kaspersky’s frustration with the malware of the 80s and 90s led to the founding of antivirus and cybersecurity vendor Kaspersky Lab. Graham Cluley started as a videogame developer and antivirus programmer three decades ago before serving in senior roles at Sophos and McAfee.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cybersecurity Awareness Month: Security Experts Reflect on Safety

CyberSecurity Insiders

NOVEMBER 1, 2021

Increasingly, traditional sandboxing and antivirus software aren’t enough. Wes Spencer, VP, External CSO, ConnectWise. As insider threats have increased by 47% this year, users may also think they are communicating with a colleague when the account has actually been taken over by an adversary. Let’s admit it.

Cybersecurity

Cybersecurity Backups Ransomware Cyber Attacks

Cyber Security Informer

Microsoft tells Exchange admins to revert previously recommended antivirus exclusions

How to choose an endpoint protection suite

Trending Sources

8 top identity and access management tools

LockFile ransomware uses intermittent encryption to evade detection

17 cyber insurance application questions you'll need to answer

BrandPost: How Much Risk Are You Willing to Take?

What is SIEM? Security information and event management explained

Webroot files patent infringement claim against Trend Micro

Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware

BrandPost: Slow EDR Rollout Requires a NG-IDS Compensating Control

Russia points finger at US for iPhone exploit campaign that also hit Kaspersky Lab

BrandPost: It’s Time to Take a Fresh Approach to Combat Phishing

Microsoft Exchange Emergency Mitigation: What admins need to know

3 authentication-level protections for remote users and devices

Top Linux endpoint protection software

4 ways attackers target humans to gain network access

NEW TECH: Votiro takes ‘white-listing’ approach to defusing weaponized documents

North Korea’s Lazarus group uses vulnerable Dell driver to blind security solutions

BrandPost: Measuring HP Sure Click Enterprise’s Return on Investment

How to keep attackers from using PowerShell against you

Chinese APT group uses multiple backdoors in attacks on military and research organizations

How to manage Microsoft's Excel and Office macro blocking

What Microsoft Defender can tell you about your network

Bye-bye best-of-breed?

Luna Moth callback phishing campaign leverages extortion without malware

A CISO's Guide to a Good Night's Sleep

Not-so-customary customer service: Experts offer tips on vendor best practices

Cybersecurity industry reacts as antivirus pioneer John McAfee found dead

Top Cybersecurity Accounts to Follow on Twitter

Cybersecurity Awareness Month: Security Experts Reflect on Safety

Stay Connected