Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ditching Kaspersky now what?


  • Please log in to reply
3 replies to this topic

#1 mattpainter701

mattpainter701

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:06:22 PM

Posted 28 August 2017 - 10:07 AM

Mid size business, trying to be super security conscious. Looking to audit our entire security stand point and needing some pointers.

 

 

We are dropping Kaspersky ( we work on gov contracts, we follow suit to what there recommendations are)

 

Our current defense

 

Cloud Spam Filter- barracuda essentials

 

Meraki Firewall- Advanced Security Service licence

  • Advanced Malware protection
  • Intrusion Detection & Prevention
  • Content Filtering
  • Botnet
  • Geo IP

MBAM/anti exploit/ransomware

 

 

Now that we dont have kaspersky, is an antivirus needed??? Malwarebytes advertises their services to 'eliminate AV'

 

If we move to another antivirus solution, we are needing it to have cloud connection..

 

 

 

 

 



BC AdBot (Login to Remove)

 


#2 JohnC_21

JohnC_21

  • Members
  • 22,637 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:22 PM

Posted 28 August 2017 - 11:33 AM

Personally I think the whole deal with Kaspersky was political. That being said look at avast. They have been steadily improving their detection rate. There is an avast for business that I believe has a management console.

 

https://www.avast.com/avast-for-business


Edited by JohnC_21, 28 August 2017 - 11:37 AM.


#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,957 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:22 PM

Posted 28 August 2017 - 02:54 PM

Although the marketing of Malwarebytes 3.0 Premium "claims" it can be used as a replacement for an existing anti-virus, it is not an anti-virus...see here. Malwarebytes has limitations and lacks many constructs that a traditional anti-virus applications employ...it is not a historical anti malware solution...meaning it does not detect legacy malware, it does not target scripted malware, document files, media files and it is incapable of of removing malicious code that has been prepended or injected into legitimate files (i.e. file infectors, Trojan patches). The Anti-Exploit module is primarily for protection against software exploitation... it does not protect against social engineering, the human exploit often resulting from fraud, spam and phishing emails.

This is a more detailed explanation by David H. Lipman, a trusted Security Colleague and Malware Researcher/Analyst.

MBAM is not an anti virus application and does not replace an an anti virus application. MBAM is an adjunct, complimentary, anti malware application.

In its role as a adjunct, complimentary, anti malware application it has limitations in aspects that the anti virus application performs in its role. MBAM does not target script files...It also does not target document files...media files...MBAM targets mainly non-viral malware. The exception being a virus dropper (a malware file that drops a virus and starts a virus infection but is not infected with the virus) and worms (such as Internet worms and AutoRun worms). MBAM is incapable of removing malicious code that has been prepended, appended or cavity injected into a legitimate file. That means if a file infecting virus infects a legitimate file MBAM will be unable to remove the malicious code...MBAM is not a historical anti malware solution. That means it will not target old malware. It's intent is to target 0-Day malware. Malware that is infecting computers Today with malware found in-the-wild, Today...With all the things that that MBAM can not do, it is not an anti virus application and it remains an anti malware application which relegates it to its complimentary position.


Dave provides the same explanation in this topic at Malwarebytes where he provides assistance on the forums board.

That indicates to me that Malwarebytes 3.0 Premium is still better served as an adjunct anti-malware solution to complement and strengthen your protection when utilizing a traditional anti-virus solution.

I agree with JohnC_21 and believe the backlash against Kaspersky is political. However, If you must switch, then I would recommend Emsisoft Internet Security or ESET Smart Security.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 Umbra

Umbra

    Authorized Emsisoft Rep


  • Members
  • 139 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:22 AM

Posted 01 September 2017 - 05:35 AM

Mid size business, trying to be super security conscious. Looking to audit our entire security stand point and needing some pointers.

 

 

We are dropping Kaspersky ( we work on gov contracts, we follow suit to what there recommendations are)

 

Our current defense

 

Cloud Spam Filter- barracuda essentials

 

Meraki Firewall- Advanced Security Service licence

  • Advanced Malware protection
  • Intrusion Detection & Prevention
  • Content Filtering
  • Botnet
  • Geo IP

MBAM/anti exploit/ransomware

 

 

Now that we dont have kaspersky, is an antivirus needed??? Malwarebytes advertises their services to 'eliminate AV'

 

If we move to another antivirus solution, we are needing it to have cloud connection..

 

 

 

 

 

Hello, 

 

i would recommend you Emsisoft Anti-Malware , it has a very efficient dual-engine connected to our cloud for malware detection and a behavior blocker to prevent zero-days malware. It also offers a web filter to block malicious websites.



Emsisoft Community Manager





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users