We Gained the Endpoint Protection We Needed Without Having to Restrict Users.”

Total Page:16

File Type:pdf, Size:1020Kb

We Gained the Endpoint Protection We Needed Without Having to Restrict Users.” Malwarebytes Endpoint Protection CASE STUDY “We gained the endpoint protection we needed without having to restrict users.” Huge influx Kaspersky was not Increased IT of malware catching all malware team productivity Challenges OVERVIEW • Downloaded software on personal devices sometime came with malware attached CUSTOMER • Huge influx of malware, ransomware, Trojans, and malicious emails Yaskawa Motoman after switching to Office 365 US, and over 30 international • Kaspersky was not catching all malware offices • Nearly 100 cases over a few months, with very little network visibility INDUSTRY Reasons for Choosing Malwarebytes Leading robotics manufacturing company in • Effectiveness: Malwarebytes caught 90 percent more malware the Americas than Kaspersky • Proactive protection: Malwarebytes blocks access to malicious IT ENVIRONMENT websites and links Kaspersky antivirus, Morphisec anti-exploit, • Ease of use: Simplified endpoint protection management with global enterprise perimeter security visibility and automation measures How Malwarebytes Solved the Problem SOLUTION Malwarebytes Endpoint • Gained visibility into client machines to ensure total coverage Protection • Reduced risk associated with endpoint infections • Increased IT team productivity by eliminating the need to re-image malware-infected machines and address slow PC performance due to malware Malwarebytes covers all bases for us. It catches more than 90 percent of malware and prevents users from going to malicious sites. We gained the endpoint protection we needed without having to restrict users’ access to anything. Malwarebytes has performed above our expectations. Jeff Magnuson, Senior IT Architect Yaksawa Motoman malwarebytes.com/business [email protected] 1.800.520.2796 Malwarebytes is a cybersecurity company that millions worldwide trust. Malwarebytes proactively protects people and businesses against malicious threats, including ransomware, that traditional antivirus solutions miss. The company’s flagship product uses signature-less technologies to detect and stop a cyberattack before damage occurs. Learn more at www.malwarebytes.com. Copyright © 2020, Malwarebytes. All rights reserved. Malwarebytes and the Malwarebytes logo are trademarks of Malwarebytes. Other marks and brands may be claimed as the property of others. All descriptions and specifications herein are subject to change without notice and are provided without warranty of any kind..
Recommended publications
  • Checks to Avoid Malware Protect Your Laptop with Security Essentials
    What is Malware? Malware is software that can infect you computer and can be a virus or malicious software that can harm & slow your system or try to steal your personal information. To help avoid malware follow the check list below. Checks to avoid Malware Check you have updated Antivirus software installed such as Microsoft Security Essentials Install and run an Anti-Malware program such as Malwarebytes Uninstall any Peer 2 Peer software such as Limewire or Vuze Be careful with email attachments and never respond to mails asking for your password Protect your Laptop with Security Essentials Microsoft Security Essentials is a free antivirus software product for Windows Vista, 7 & 8. It pro- vides protection against different types of malware such as computer virus, spyware, rootkits, trojans & other malicious software. Download & install Security Essentials from the following link http:// www.microsoft.com/security_essentials/ Clear Infections using Malwarebytes Malware bytes is free to download & install from http://www.malwarebytes.org Once installed it is recommended that you run a Full Scan of your laptop to check for any malware that may reside on the system. Once complete, follow the on screen instructions to finish removing any threats found. You should regularly run updates and scans to ensure your system remains clean. It is also advisable to scan external storage devices such as USB keys as they can spread infections. If the above criteria are fully met, ISS staff at the service desk on the ground floor of the library are happy to investigate problems on your laptop For more information go to http://www.dcu.ie/iss ISS online service desk: https://https://iss.servicedesk.dcu.ie Follow ISS on Twitter @ISSservice .
    [Show full text]
  • Hostscan 4.8.01064 Antimalware and Firewall Support Charts
    HostScan 4.8.01064 Antimalware and Firewall Support Charts 10/1/19 © 2019 Cisco and/or its affiliates. All rights reserved. This document is Cisco public. Page 1 of 76 Contents HostScan Version 4.8.01064 Antimalware and Firewall Support Charts ............................................................................... 3 Antimalware and Firewall Attributes Supported by HostScan .................................................................................................. 3 OPSWAT Version Information ................................................................................................................................................. 5 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.890.0 for Windows .................................................. 5 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.890.0 for Windows ........................................................ 44 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.824.0 for macos .................................................... 65 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.824.0 for macOS ........................................................... 71 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.730.0 for Linux ...................................................... 73 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.730.0 for Linux .............................................................. 76 ©201 9 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
    [Show full text]
  • Key Benefits Core Technologies and Technical Features
    Advanced threat prevention Malwarebytes Endpoint Security is an innovative platform that delivers powerful multi- layered defense for smart endpoint protection. Malwarebytes Endpoint Security enables small and large enterprise businesses to thoroughly protect against the latest malware and advanced threats—including stopping known and unknown exploit attacks. Key Benefits Blocks zero-hour malware Easy management Reduces the chances of data exfiltration and saves Simplifies endpoint security management and identifies on IT resources by protecting against zero-hour vulnerable endpoints. Streamlines endpoint security malware that traditional security solutions can miss. deployment and maximizes IT management resources. Saves legacy systems Scalable threat prevention Protects unsupported programs by armoring Deploys protection for every endpoint and scales as vulnerabilities against exploits. your company grows. Increases productivity Detects unprotected systems Maintains end-user productivity by preserving Discovers all endpoints and installed software on your system performance and keeping staff on revenue- network. Systems without Malwarebytes that are positive projects. vulnerable to cyber attacks can be easily secured. Core Technologies and Technical Features Anti-Malware Proactive anti-malware/anti-spyware scanning Three system scan modes (Quick, Flash, Full) engine Enables selection of the most efficient system scan Detects and eliminates zero-hour and known based on endpoint security requirements and available viruses, Trojans, worms, rootkits, adware, and system resources. spyware in real time to ensure data security and network integrity. Extends its protection to Windows Server operating systems. | Santa Clara, CA | malwarebytes.com | [email protected] | 1.800.520.2796 Advanced threat prevention Malicious website blocking Advanced malware remediation Prevents access to known malicious IP addresses Employs delete-on-reboot to remove persistent or so that end users are proactively protected from deeply embedded malware.
    [Show full text]
  • Antivirus Software Before It Can Detect Them
    Computer virus A computer virus is a computer program that can copy itself and infect a computer without the permission or knowledge of the owner. The term "virus" is also commonly but erroneously used to refer to other types of malware, adware, and spyware programs that do not have the reproductive ability. A true virus can only spread from one computer to another (in some form of executable code) when its host is taken to the target computer; for instance because a user sent it over a network or the Internet, or carried it on a removable medium such as a floppy disk, CD, DVD, or USB drive. Viruses can increase their chances of spreading to other computers by infecting files on a network file system or a file system that is accessed by another computer.[1][2] The term "computer virus" is sometimes used as a catch-all phrase to include all types of malware. Malware includes computer viruses, worms, trojan horses, most rootkits, spyware, dishonest adware, crimeware, and other malicious and unwanted software), including true viruses. Viruses are sometimes confused with computer worms and Trojan horses, which are technically different. A worm can exploit security vulnerabilities to spread itself to other computers without needing to be transferred as part of a host, and a Trojan horse is a program that appears harmless but has a hidden agenda. Worms and Trojans, like viruses, may cause harm to either a computer system's hosted data, functional performance, or networking throughput, when they are executed. Some viruses and other malware have symptoms noticeable to the computer user, but many are surreptitious.
    [Show full text]
  • Q3 Consumer Endpoint Protection Jul-Sep 2020
    HOME ANTI- MALWARE PROTECTION JUL - SEP 2020 selabs.uk [email protected] @SELabsUK www.facebook.com/selabsuk blog.selabs.uk SE Labs tested a variety of anti-malware (aka ‘anti-virus’; aka ‘endpoint security’) products from a range of well-known vendors in an effort to judge which were the most effective. Each product was exposed to the same threats, which were a mixture of targeted attacks using well-established techniques and public email and web-based threats that were found to be live on the internet at the time of the test. The results indicate how effectively the products were at detecting and/or protecting against those threats in real time. 2 Home Anti-Malware Protection July - September 2020 MANAGEMENT Chief Executive Officer Simon Edwards CONTENTS Chief Operations Officer Marc Briggs Chief Human Resources Officer Magdalena Jurenko Chief Technical Officer Stefan Dumitrascu Introduction 04 TEstING TEAM Executive Summary 05 Nikki Albesa Zaynab Bawa 1. Total Accuracy Ratings 06 Thomas Bean Solandra Brewster Home Anti-Malware Protection Awards 07 Liam Fisher Gia Gorbold Joseph Pike 2. Threat Responses 08 Dave Togneri Jake Warren 3. Protection Ratings 10 Stephen Withey 4. Protection Scores 12 IT SUPPORT Danny King-Smith 5. Protection Details 13 Chris Short 6. Legitimate Software Ratings 14 PUBLICatION Sara Claridge 6.1 Interaction Ratings 15 Colin Mackleworth 6.2 Prevalence Ratings 16 Website selabs.uk Twitter @SELabsUK 6.3 Accuracy Ratings 16 Email [email protected] Facebook www.facebook.com/selabsuk 6.4 Distribution of Impact Categories 17 Blog blog.selabs.uk Phone +44 (0)203 875 5000 7.
    [Show full text]
  • PC Pitstop Supershield 2.0
    Anti -Virus Comparative PC Matic PC Pitstop SuperShield 2.0 Language: English February 2017 Last Revision: 30 th March 2017 www.av-comparatives.org Commissioned by PC Matic - 1 - PC Pitstop – February 2017 www.av-comparatives.org Introduction This report has been commissioned by PC Matic. We found PC Matic PC Pitstop very easy to install. The wizard allows the user to change the location of the installation folder and the placing of shortcuts, but the average user only needs to click Next a few times. The program can be started as soon the setup wizard completes. A Different Approach PC Matic approaches security differently than traditional security products. PC Matic relies mainly on a white list to defeat malware; this can lead to a higher number of false alarms if users have files which are not yet on PC Matic’s whitelist. Unknown files are uploaded to PC Matic servers, where they get compared against a black- and white list (signed and unsigned). By default, PC Matic SuperShield only blocks threats and unknown files on-execution, but does not remove/quarantine them. Additional features In addition to malware protection, PC Matic also provides system maintenance and optimization features. These include checking for driver updates, outdated programs with vulnerabilities, erroneous registry entries and disk fragmentation. A single scan can be run which checks not only for malware, but also for any available system optimization opportunities. Commissioned by PC Matic - 2 - PC Pitstop – February 2017 www.av-comparatives.org Tested products The tested products have been chosen by PC Matic. We used the latest available product versions and updates available at time of testing (February 2017).
    [Show full text]
  • MRG Effitas Real Time Protection Test Project, First Quarter (Q2 2013)
    MRG Effitas Real Time Protection Test Project, First Quarter – Q2 2013 MRG Effitas Real Time Protection Test Project, First Quarter (Q2 2013) Copyright 2013 MRG Effitas Ltd. This article or any part of it must not be published or reproduced without the consent of the copyright holder. 1 MRG Effitas Real Time Protection Test Project, First Quarter – Q2 2013 Contents: Introduction 3 Security Applications Tested 3 Methodology used in the Test 4 Samples Used 5 Test Results 6 Conclusions 7 Copyright 2013 MRG Effitas Ltd. This article or any part of it must not be published or reproduced without the consent of the copyright holder. 2 MRG Effitas Real Time Protection Test Project, First Quarter – Q2 2013 Introduction: The MRG Effitas Real Time Protection Testing Project is a replacement for and an evolution of the “Flash Tests” conducted to date. For those unfamiliar with the Flash Tests, their purpose was to give an indication of product efficacy against live, ITW threats applied to the System Under Test (SUT) using a valid, real world infection vector and process. Despite using live ITW malware and realistic infection vectors, we always added the caveat that due to the small malware sample size used, the individual Flash Tests should not be used as a rigorous assessment of product efficacy and that their purpose was to give an indication of efficacy over time. The MRG Effitas Real Time Protection Testing Project is designed to overcome the limitation of the Flash Tests by using greatly increased number of malware samples and higher testing frequency. The project will run for twelve months commencing at the start of Q2 2013 and finishing at the end of Q1 2014 – in line with all our other projects.
    [Show full text]
  • Is Antivirus Dead? Detecting Malware and Viruses in a Dynamic Threat Environment READER ROI Introduction
    Is Antivirus Dead? Detecting Malware and Viruses in a Dynamic Threat Environment READER ROI Introduction Despite the presence of advanced antivirus In November 2015, Starwood Hotels and Resorts confirmed it had fallen victim to a solutions, cyber criminals continue to malware attack that spanned eight months and involved 54 locations. Infiltrating its launch successful attacks using increasingly sophisticated malware. Read this paper to network via point-of-sale (POS) channels within the chain’s restaurants and gift shops, learn: the malware stole payment card information, including card numbers, cardholder names, expiration dates, and security codes. • Why antivirus software is no longer effective in detecting, let alone stopping, most malware Less than a week later, Hilton Hotels and Resorts admitted to having suffered an almost identical malware breach in its own POS systems. And both entities are just the latest in a • Why a layered approach to cybersecurity offers more complete series of high profile breaches that range from well-known corporations such as Target to protection than antivirus or other the U.S. Office of Personnel Management. “silver bullet” solutions can on their own No wonder companies are fearful of becoming the next target, says Pedro Bustamente, • Why a malware hunting tool is Vice President of Technology at Malwarebytes. “Their worst fear is to have a situation like essential to detect any malware that a Target or a Home Depot, where they have been breached, don’t know about it for a breaches the network long time, and all of a sudden it comes out. Meanwhile, during the dwell time, the infection gathered customer information or internal information,” Bustamente explains.
    [Show full text]
  • Malwarebytes for Windows User Guide Version 3.6.1 19 September 2018
    Malwarebytes for Windows User Guide Version 3.6.1 19 September 2018 Notices Malwarebytes products and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. You may copy and use this document for your internal reference purposes only. This document is provided “as-is.” The information contained in this document is subject to change without notice and is not warranted to be error-free. If you find any errors, we would appreciate your comments; please report them to us in writing. The Malwarebytes logo is a trademark of Malwarebytes. Windows is a registered trademark of Microsoft Corporation. All other trademarks or registered trademarks listed belong to their respective owners. Copyright © 2018 Malwarebytes. All rights reserved. Third Party Project Usage Malwarebytes software is made possible thanks in part to many open source and third party projects. A requirement of many of these projects is that credit is given where credit is due. Information about each third party/open source project used in Malwarebytes software – as well as licenses for each – are available on the following page. https://www.malwarebytes.com/support/thirdpartynotices/ Sample Code in Documentation The sample code described herein is provided on an “as is” basis, without warranty of any kind, to the fullest extent permitted by law. Malwarebytes does not warrant or guarantee the individual success developers may have in implementing the sample code on their development platforms.
    [Show full text]
  • Frontier School Division Banishes Malware
    CASE STUDY Frontier School Division banishes malware Remote school district uses Malwarebytes Anti-Malware for Business to eliminate malware without flying staff to each location Business profile INDUSTRY Frontier School Division includes more than 40 schools across Education northern Manitoba in Canada. The geographical area served by Frontier School Division is the largest of any in Canada, and BUSINESS CHALLENGE many of the communities are accessible only by boat, floatplane, Enable stronger malware protection with snowmobile, rail, or winter ice roads. Several thousand Windows remote manageability PCs across the province are connected over a single network. IT ENVIRONMENT A network of several thousand Windows PCs and Kaspersky antivirus The amount of infections has been significantly reduced on our user machines SOLUTION since we installed Malwarebytes. We’ve also 4,000 seats of Malwarebytes greatly reduced the installation of potentially Anti-Malware for Business, which includes unwanted programs. the Management Console —Andrew Single, Divisional Network Administrator, Frontier School Division RESULTS • Greatly reduced Potentially Unwanted Business challenge Programs (PUPs) and infections Prevent malware from overpowering users • Simplified deployment with no conflicts Administering a computer network distributed over thousands • Gained stronger protection and remote of square miles in rugged rural Canada— some locations only accessibility to end user machines accessible by floatplane—poses its own unique challenges. Not the least of which is remedying the growing incidence of malware infections. In 2013, an administrative assistant reported an increasing amount of malware showing up on machines used by the secretaries. “Malware was getting by our perimeter scanning and the Kaspersky product we have in place,” said Andrew Single, Divisional Network Administrator for the Frontier School Division.
    [Show full text]
  • ANTI-VIRUS ARTIFACTS III // by Devisha Rochlani ​
    ANTI-VIRUS ARTIFACTS III // By Devisha Rochlani ​ 1 Antivirus Artifacts III Table of Contents Topic Page Introduction 3 Avira 4 - 7 F-Secure 8 - 10 Norton 11 - 15 TrendMicro 16 - 18 WebRoot 19 - 22 BitDefender 23 - 27 MalwareBytes 28 - 30 Adaware 31 - 32 AVAST 33 - 37 Dr. Web 38 - 40 Kaspersky 41 - 43 Conclusion 44 2 Antivirus Artifacts III Welcome to Antivirus Artifacts III. The Antivirus Artifacts series so far has focused exclusively on mnemonic artifacts: drivers, API hooks, or processes which may be present. This third entry identifies registry artifacts from the AV product as well as services. New AVs have been added to the collection: Adaware, Dr. Web, AVAST , Kaspersky. Note: due to the size of the registry artifacts retrieved they will not be listed in this paper. Registry dumps for HKEY_LOCAL_MACHINE, HKEY_CURRENT_CONFIG, HKEY_CLASSES_ROOT, HKEY_USERS, and HKEY_CURRENT_USER can be viewed on my GitHub. https://github.com/D3VI5H4/Antivirus-Artifacts/tree/main/Registry%20Data Summary of Antivirus Artifacts I: The most common method to determine if an anti-virus product or EDR system is in place is using the WMIC and performing a basic query against the Windows Security Center ​ ​ ​ namespace. ​ wmic /node:localhost /namespace:\\root\SecurityCenter2 path ​ ​ AntiVirusProduct Get DisplayName | findstr /V /B /C:displayName || echo No Antivirus installed courtesy of Sam Denty from StackOverflow ​ ​ ​ This method will work in most scenarios. The problem presented here is that this will only return a string if the anti-virus product, or the EDR system, has chosen to register itself in the Windows Security Center namespace. If the product has not registered itself this query will fail.
    [Show full text]
  • Malware's Fate Is Sealed at Fuji Seal
    CASE STUDY Malware’s fate is sealed at Fuji Seal Malwarebytes stops ransomware while saving hours per week Business profile INDUSTRY Food, beverage, home care, personal care, and pharmaceutical Manufacturing companies around the world rely on American Fuji Seal for product packaging. Fuji Seal shrink sleeve solutions protect products, BUSINESS CHALLENGE specialized printing techniques help attract consumer attention, Protect endpoints from threats that and pressure-sensitive labels communicate important product disrupt 24/7 operations information. Because information systems can’t be protected with IT ENVIRONMENT their own shrink sleeves, Fuji Seal deployed Malwarebytes as an Sophos antivirus, enterprise security additional layer of defense against malware and ransomware. layers such as web filtering, firewalls, and OpenDNS The number-one benefit of Malwarebytes has SOLUTION been freeing my help desk team from having Malwarebytes Anti-Malware for Business to scan and clean machines. We’re saving at RESULTS least 10 hours a week—it’s huge. • Saved at least 10 hours per week for —Maxim Kushnir, IT Infrastructure Manager, American Fuji Seal help desk staff • Improved endpoint performance • Stopped ransomware Business challenge • Simplified deployment, updating, Find nonstop protection for critical production systems and management Fuji Seal’s American headquarters are in Kentucky, with production facilities in Indiana and Mexico. In the past year, the company has grown quickly, doubling the number of user endpoints. A 24-hour-a- day manufacturing schedule means systems have to run nonstop. However, malware was affecting users’ uptime and the help desk team’s productivity. “Our team was cleaning machines and restarting servers at least three or four times per week,” said Maxim Kushnir, IT Infrastructure Manager at Fuji Seal.
    [Show full text]