[Network protection - in red]

First of all, please sign up for this ESET forum and after registration re-post in the appropriate product subforum and provide logs collected as follows:
- enable advanced logging under Help and support -> Technical support
- reboot the machine
- disable logging
- collect logs with ESET Log Collector and upload the generated archive here.

[Plugging the holes: How to prevent corporate data leaks in the cloud]

Misconfigurations of cloud resources can lead to various security incidents and ultimately cost your organization dearly. Here’s what you can do to prevent cloud configuration conundrums.

The post Plugging the holes: How to prevent corporate data leaks in the cloud appeared first on WeLiveSecurity

View the full article

[Attention "Web access protection is paused" in ESET Endpoint Security 8.1.2037.2]

Yes, it's a known bug (P_EESW-7469). However, we strongly recommend keeping Web access protection installed and enabled at all times, otherwise you open doors for Internet-borne threats to get to endpoints or users who may enter sensitive information on phishing or scam websites which would not be blocked.

[Eset Update Hang on ver. 14.2.24]

11 hours ago, peteyt said:

That might be the warning - it is 4.07 GB in size. I can upload it or would it be best to delete the file and re-do the logs on the next update? Was created on the 2nd September and last modified today

Yes, EsetPerf.etl can be huge; it can grow to gigabytes in minutes, hence we recommend keeping the logging enabled only for a short time. You can compress the file, upload it to a storage location and pm me a download link, we'll see if there's something interesting, such as a high CPU load logged.

[On-Demand Scans - what is best practice?]

Running a full disk scan once a month should be sufficient. Even once or twice a year should be ok because there are plenty of protection modules that can detect threats on a disk, such as real-time protection, startup scans, memory scans, etc.

[The actual name of the certificate in the browser]

You can export the certificate from a browser and import it in a policy.

[Eset Update Hang on ver. 14.2.24]

There was no EsetPerf.etl in the Diagnostics folder. If you enable , click OK to save settings and disable it after a few seconds, is there really no EsetPerf.etl in C:\ProgramData\ESET\ESET Security\Diagnostics created?

[Howdo I authorise a connection for eset not to block]

If pausing the firewall make a difference and you have no custom blocking rules created, use the learning mode for a while or run the firewall troubleshooting wizard to unblock the appropriate communication.

[ESET Endpoint products for Windows version 8.1.2037 have been released]

Release Date: September 21, 2021

ESET Endpoint Antivirus and ESET Endpoint Security version 8.1.2037 have been released and are available to download.

Changelog:

Version 8.1.2037

• Fixed: detection of SCSI drives as removable scan target.
• Fixed: reverting of unlocked settings to default when a policy is applied.
• Fixed: indication of applied changes in advanced settings (menu, links, groups)
• Fixed: handling of the local time value for Next run in scheduler when a new task is created
• Fixed: activation with offline license in managed environment
• Fixed: data retrieval for the Security report map
• Fixed: updating of the EDTD/EI activation status was displayed incorrectly in ESET Protect
• Other stability and performance improvements

Upgrade to Latest Version

Upgrade my ESET Endpoint products for Windows to the latest version

Support Resources

ESET provides support in the form of Online Help (user guides), fully localized application and Online Help, online Knowledgebase, and applicable to your region, chat, email or phone support.

• Online Help (user guides)
• Visit www.eset.com/contact to email ESET technical support

[European police dismantle cybercrime ring with ties to Italian Mafia]

The group used phishing, BEC and other types of attacks to swindle victims out of millions

The post European police dismantle cybercrime ring with ties to Italian Mafia appeared first on WeLiveSecurity

View the full article

[Error: ‎554 5.7.1 Rejected by ESETS_SMFI (spam)‎]

Dobry den,
poslite, prosim, testovaci email podla instrukcii na https://www.mail-tester.com/ a nasledne mi v sukromnej sprave poslite linku s vysledkami.

[ESET Endpoint Antivirus for Linux version 8.1.4.0 has been released]

Release Date: September 21, 2021

ESET Endpoint Antivirus for Linux version 8.1.4.0 has been released and is available to download.

Changelog:

Version 8.1.4.0

• Fixed: Performance issues

Upgrade to Latest Version

Upgrade my ESET Endpoint products for Linux to the latest version

Support Resources

ESET provides support in the form of Online Help (user guides), fully localized application and Online Help, online Knowledgebase, and applicable to your region, chat, email or phone support.

• Online Help (user guides)
• Visit www.eset.com/contact to email ESET technical support

[Reinstall doesn't work]

I mean to run the installer as follows:

eis_nt64.exe --avd-disable

[Modifying the hosts file will cause the hosts file to be isolated]

You can create a detection exclusion at your responsibility. Any malware or unwanted application that adds malicious or unwanted records to the hosts file will be able to do so.

[The actual name of the certificate in the browser]

The best would be exclude the SSL certificate from filtering by setting the action to Ignore. In the SSL filtering setup - List of known certificates, add a new certificate by importing it from a URL, then set the action to Ignore.

Note that any possible malware on excluded websites will not be detected and may be executed. Therefore use exclusions with care and only for trusted websites, such as bank websites.

[Is it possible to exclude the contents of a folder from real-time scanning, but not scheduled scans?]

Wildcards are supported only at the end of the path in performance exclusions. You can exclude /Users/*/OneDrive but we do not guarantee that it will always work.

By contrast, detection exclusions support wildcards anywhere in the path.

[The actual name of the certificate in the browser]

If SSL scanning is performed, you can't se the original certificate in the browser. You can exclude a particular website (e.g . a bank website) from protocol filtering; in that case the original cert.can be seen in the browser.

[Migration from ESET Endpoint Antivirus v4 to v8 on Ubuntu 20.04]

Please refer to https://help.eset.com/eeau/8/en-US/secure-boot.html :

Managing several devices

Suppose you manage several machines that use the same Linux kernel and have the same public key enrolled in UEFI. In that case, you can sign the EEAU kernel module on one of those machines containing the private key and then transfer the signed kernel module to the other machines. When the signing is complete:

1.Copy/paste the signed kernel module from /lib/modules/<kernel-version>/eset/eea/eset_rtp to the same path on the target machines.

2.Call depmod <kernel-version> on the target machines.

3.Restart ESET Endpoint Antivirus for Linux on the target machine to update the modules table. Execute the following command as a privileged user:

systemctl restart eea

In all cases, replace <kernel-version> with the corresponding kernel version.

[How do I do clean uninstall of Eset pro?]

Please refer to https://support.eset.com/en/kb3244

[How do I do clean uninstall of Eset pro?]

Please download the installer from ESET's website and run it. If it offers you to uninstall the product, uninstall it, otherwise reinstall it first and then uninstall it.

[How do I do clean uninstall of Eset pro?]

Looks like ESET is still installed. Run the installer again and choose to uninstall the product, or reinstall the product first, then run the installer again and choose to uninstall it.

[Windows 11 pro with ESET]

1 hour ago, MattNZ said:

My experience so far with Windows 11 is that Eset Endpoint Security 8.1 is NOT compatible with windows 11.  My CPU is pegged at 100% since installing.  The services are Eset Firewall Helper and Eset Service.  We have tried disabling the Eset Firewall and it made no change

Please continue as follows:
- reproduce the issue with high CPU utlitization
- enable advanced operating system logging under Tools -> Diagnostics
- after 3-5 minutes disable logging
- collect logs with ESET Log Collector, upload the generated archive to a safe location and drop me a personal message with a download link.

Also please note that you didn't post to a correct subforum. We kindly ask to report issues re. Endpoint in the Endpoint subforum: https://forum.eset.com/forum/34-eset-endpoint-products/

[Secure web filtering not working with EICAR?]

5 minutes ago, carmik said:

@Marcos tested with Firefox 92 (64-bit), normal installation made via group policy. Downloaded cloudcar.com from https://amtso.eicar.org/cloudcar.exe

Please try downloading the eicar test file, not the CloudCar test file as I asked:

https://secure.eicar.org/eicar_com.zip

Is it detected upon download?

[Eset Update Hang on ver. 14.2.24]

39 minutes ago, NewbyUser said:

Kind of ridiculous putting all the work on the end user. 

If one is having an issue which cannot be easily reproduced, logs are the only thing that can help in investivation.

[Is it possible to exclude the contents of a folder from real-time scanning, but not scheduled scans?]

You can set up the scheduled scan to ignore exclusions.