I guess where I'm a little confused is what you'd be running on the standalone " terminal" that you wouldn't be running on your regular endpoints? I hear what you're saying but that's just not going to cut it here I'm afraid, contractors are going to bring things into our building on USB sticks, it's the nature of our business and restricting them will be an almost un- climbable uphill battle. because it's a workstation, and not for personal use. nothing gets into the machine through USB or DVD-drive. We have a policy that disables the USB ports. We were thinking of using something like Deep Freeze to wipe them daily back to their default. Has anyone done anything like this? Any ideas? It needs to be simple and easy, where users can just plug in, get a pop up and pull their stick out and get back to work. While this isn't perfect we feel it might help catch stuff before it hits our domain (rather than AS it hits our domain) and while it might still miss things it will maybe make users think more about just randomly plugging in USB sticks (and ultimately another virus net can't help) SO we've been thinking of building two small off domain, not networked PCs that will sit near our printers and will allow users to plug in and scan USBs quickly and easily. External contractors and alike have been allowed to use their USB sticks on domain machines and it's been an uphill battle to get people to understand that no AV is perfect and just because Kaspersky says the USB is clean, doesn't mean it 100% is safe. It's very very likely that this came in via a USB stick (avoiding £40k worth of enterprise firewalls), our users are very carefree when it comes to where they get them and what they do with them. Yet stuff still gets through, we recently got hit by a crypto which wiped out our finance file share (lucky we have backups), it avoided KES and that's actually why we've been running Webroot along side it. We're fairly tight here when it comes to malware, our firewalls scan incoming and outgoing traffic, we run Kaspersky on our servers alongside Webroot as well as Webroot on our user end points. People are the latest online money-making commodity.Anyone else come up with anything like this or have any recommendations for how they did it or what they used? I checked the privacy and terms of many top-ranked anti-virus kahunas and they all do the same. But, I read the terms and privacy policies and it boils down to, we gave up our devices to Microsoft, Google and Kasper, but the policies don’t say anything about tweaking their SMRC-‘wares.
That has my vote! I too am tired of constant buy me, buy me in-my-face popups and usually at the most inopportune times.
Also give an option that says “Tick this box if you do not want to get notifications or other notifications or sidenotes or questions about your personal wellbeing or any other messages and only show notifications that are very closely related to a dangerous virus.” put ALL the notification options in one (1!) single place and don’t hide them all over the place. The best places to look are ‘lab’ test results, like AVtest. Sort of like Google popularity contests for web page rankings. The company that pays the most in commissions to the affiliated ‘reviewing’ the product, the further up the ladder the product goes. Most “review” sites sell the products they review. I can’t really say if I am better protected now, all I know is that I am still getting spammed… because reviews stated that it was the best. Kaspersky Anti-Ransomware Tool для Бизнеса 11.Kaspersky Anti-Ransomware Tool for Business 44.Kaspersky Small Office Security & Management Console 88.Virus and Ransomware related questions 79.
0 kommentar(er)
