-
Posts
36,509 -
Joined
-
Last visited
-
Days Won
1,453
Kudos
-
Marcos received kudos from Trooper in ESET Dynamic Threat Defense
There is a difference between LiveGrid and ESET Dynamic Threat Defense. While LiveGrid provides information about recent threats and malicious urls to the product in short time intervals and enables the product to check the reputation of unknown files against cloud, EDTD submits files potentially carrying malware for a sandbox analysis in cloud and waits for a verdict. In the mean time access to the file can be temporarily blocked until the verdict is received.
This improves protection against any kind of malware, not only ransomware. However, in case of ransomware it's usually not that ESET would not detect the threat but an attacker gains administrator access, connects via RDP, disables or uninstall the AV and only then runs the ransomware when it cannot be blocked by the AV.
Therefore we recommend:
- enabling LiveGrid (both the reputation and feedback system)
- enabling detection of pot. unsafe applications (to prevent running legit applications that can disable or remove AV)
- setting up password protection
- using real-time protection and HIPS policies with default settings to lock the settings on clients
- enable SSL filtering
- keep all protection features enabled
- consider using ESET Dynamic Threat Defense (you can ask your local ESET distributor for a trial license)
- consider using EDR (ESET Enterprise Inspector) to monitor your network perimeter for suspicious operations that users may perform and react accordingly, if necessary.
Besides that, make sure to secure RDP. Use 2FA or disable connections from outside and use VPN instead. Also make sure that the operating system, other applications and antivirus are always up to date. Teach users to practice safe computing (avoid visiting dubious websites, open suspicious attachments, clicking suspicious links, etc).
In order to trial ESET Dynamic Threat Defense, you can click Learn more on the EDTD dashboard:
This will take you to ESET's web page where you select "Help me choose". After specifying more information about your environment and the way you want to manage endpoints, you will be presented with options to contact sales or "Try before you buy" which allows for creating a trial EBA account
-
Marcos received kudos from Papusan in ESET Windows home products version 15.0.18 have been released
ESET NOD32 Antivirus, ESET Internet Security and ESET Smart Security Premium version 15.0.18 have been released and are available to download.
Changelog:
Version 15.0.18
Fixed: Issue with duplicate firewall rules created in firewall interactive mode Fixed: Other minor fixes
Known issues:
N/A
Upgrade to Latest Version
Upgrade my ESET Windows home product to the latest version
If your ESET security product has not updated automatically yet, you can enforce product update by manually checking for update in the Update panel or wait until it updates automatically.
Support Resources
ESET provides support in the form of Online Help (user guides), fully localized application and Online Help, online Knowledgebase, and applicable to your region, chat, email or phone support.
Online Help (user guides) Visit www.eset.com/contact to email ESET technical support -
Marcos received kudos from m4v3r1ck in Customer satisfaction survey 2021
Dear users,
To start off let me thank you for being our valued customer. It's been our mission to provide you with quality and effective products that protect your digital words. We endeavor to listen to your feedback and tailor the products to your liking although we realize that it's impossible to fulfill everybody's expectations completely, especially when it comes to home users.
We would like you to spend a while answering the following questions which will give us insight into how you perceive ESET, our products and services and will help us improve things further.
Regards,
Marcos
-
Marcos received kudos from Mra in STOP Eset from scanning USB and thumbdrives? How to?
You can set up the desired action in the list of interactive alerts:
-
Marcos received kudos from micasayyo in Chrome browser does not recognize protected websites for banking and payment protection
You can choose between using a standard browser for browsing and have redirection of bank sites to a secure browser enabled, or enable "secure all browsers" with redirection disabled. In this case the secure browser will work regardless of browser updates.
-
Marcos received kudos from HexousKoneko in HIPS log over 3gb
Yes, you can delete the file in safe mode.
-
Marcos received kudos from JohnnyOnTheSpot in ESET PROTECT and Outlook (O365)
It's weird cause no changes have been made to the Outlook plug-in for years. Therefore I'd recommend raising a support ticket with your local ESET distributor.
As for the red protection status after disabling the plug-in, you can avoid it by disabling the appropriate application status:
-
Marcos received kudos from JohnnyOnTheSpot in ESET PROTECT and Outlook (O365)
You can do that via a policy by applying the above setting. It allows you to choose if a particular app status will be: 1, reported on clients, 2, reported to ESET PROTECT:
-
Marcos received kudos from New_Style_xd in ESS does scan non stop
Are you referring to this path that is continually changing? It's supposed to as it indicates that real-time protection is scanning files that are accessed, otherwise you would be unprotected.
-
Marcos received kudos from mallard65 in Error in 15.0.16.0
Since no update problems have been reported with v15, it must be a specific issue in your environment. Therefore I'd recommend raising a support ticket with your local ESET distributor since further troubleshooting will be needed, possibly they will also need to arrange a remote session with you.
We kindly ask you not to blame ESET staff and developers for issues, especially for those that have not been investigated yet. Also please be so kind and use a polite tone in discussions in this public forum. ESET cannot be responsible for connectivity issues between your computer and ISP or between the particular ISP and ESET's servers.
-
Marcos received kudos from Caitly in Eset scan keeps getting cancelled
This is a known issue with v7.1.9. Will be fixed in v7.1.10 soon.
-
Marcos received kudos from Trooper in PCU Update Status?
Setting update mode to Auto-update will update Endpoint v8.x to Endpoint v9. For v9+ this setting is irrelevant.
V9+ has program auto updates enabled by default but it's possible to pause them if really necessary:
-
Marcos received kudos from New_Style_xd in LiveGuard not working for me !
The results above are good for ESET. Since the file is benign, all AVs that detected the file failed and reported a false positive.
-
Marcos received kudos from Trooper in Customer satisfaction survey 2021
Dear users,
To start off let me thank you for being our valued customer. It's been our mission to provide you with quality and effective products that protect your digital words. We endeavor to listen to your feedback and tailor the products to your liking although we realize that it's impossible to fulfill everybody's expectations completely, especially when it comes to home users.
We would like you to spend a while answering the following questions which will give us insight into how you perceive ESET, our products and services and will help us improve things further.
Regards,
Marcos
-
Marcos received kudos from m4v3r1ck in ESET CyberSecurity Pro for macOS version 6.11.2.0 has been released
Release Date: October 7, 2021
ESET CyberSecurity Pro for macOS 6.11.2.0 has been released and is available to download.
Changelog:
Version 6.11.2.0
Added: support for macOS 12 Monterey Fixed: reported vulnerabilities Fixed: firewall issue with parsing rule for path that doesn't exist on the system Fixed: exclusions for Web and Email protection Fixed: Various minor updates and fixes that improves overall product stability and security Known issues
Upgrade to Latest Version
Upgrade my ESET CyberSecurity for macOS to the latest version
Support Resources
ESET provides support in the form of Online Help (user guides), fully localized application and Online Help, online Knowledgebase, and applicable to your region, chat, email or phone support.
Online Help (user guides) Visit www.eset.com/contact to email ESET technical support -
Marcos received kudos from Aryeh Goretsky in False positive
The detection is correct, it was released 2 days ago.
For more information about malware misusing this particular certificate, please read https://www.fortinet.com/blog/threat-research/deep-analysis-of-driver-based-mitm-malware-itranslator
Not all files signed with this certificate are necessarily malicious. However, since the certificate is no longer trusted no file signed with the certificate can be trusted either.
We'll make files from the said archive undetected.
-
Marcos received kudos from PrinceOfAbyss in False positive
The detection is correct, it was released 2 days ago.
For more information about malware misusing this particular certificate, please read https://www.fortinet.com/blog/threat-research/deep-analysis-of-driver-based-mitm-malware-itranslator
Not all files signed with this certificate are necessarily malicious. However, since the certificate is no longer trusted no file signed with the certificate can be trusted either.
We'll make files from the said archive undetected.
-
Marcos received kudos from Cem GUNGOR in Blocked webpage message customization
You can customize only Web Control alerts:
This is a known bug, will be fixed automatically soon.
-
Marcos received kudos from NuclearSSD in Slow web console - On premise ESMC PROTECT
Please raise a support ticket with your local ESET distributor since further logs and investigation will be needed.
-
Marcos received kudos from Peter Randziak in ESET Endpoint Antivirus for macOS 7 with completely new architecture Early access program signup
Native support is planned for Endpoint v7, ie. it won't be available sooner than some time next year. In the mean time, the current version of Endpoint for Mac works on M1-powered systems via Rosetta 2 emulation just fine.
-
Marcos received kudos from SnowdeninRussia in Cannot update to 15.0.16.0
Unfortunately we were unable to reproduce this issue; it was not discovered during beta and pre-release QA testing and we haven't received any reports of an issue like that either. Therefore we'd recommend uninstalling v14 and installing v15 from scratch after a reboot.
-
Marcos received kudos from Gonzalo Alvarez in Update ESET Smart Security V15 now blocking all sorts of applications
Are these logs from a state when all communication was blocked? The thing is the firewall rules look ok and some have also "allow" action set.
There can be issues in case there were custom rules created by EIS/ESSP v11.1 or older and you upgrade to v15. In that case there are two solutions:
1, Reset settings to defaults
2, Uninstall v15 and install it from scratch.
Users who did not have any custom firewall rules are not affected. Also if custom firewall rules were created by EIS/ESSP newer than v11.1 the issue doesn't occur.
We have paused updates to v15 until a new Configuration Engine module is released. With the new CE module upgrades from older versions that have custom fw rules created by v11.1 or older will be upgraded to v15 alright.
-
Marcos received kudos from Baldrick in Scheduled Scans
ESET is a vendor of antivirus software and as such should have a consistent interface with only minor changes over the time to avoid confusion by users after upgrading to newer versions. Moreover, users should not keep the AV's gui open often, watching it for a long time so adding visual effects does not matter unlike in the case of operating system for instance which must attract home users.
Last but not least, I'd like to remind that this topic is intended for posting suggestions. It's not for lengthy discussions which would spoil it. If you have a comment or want to discuss something, please create a new topic.
-
Marcos received kudos from TheStill in Scheduled Scans
ESET is a vendor of antivirus software and as such should have a consistent interface with only minor changes over the time to avoid confusion by users after upgrading to newer versions. Moreover, users should not keep the AV's gui open often, watching it for a long time so adding visual effects does not matter unlike in the case of operating system for instance which must attract home users.
Last but not least, I'd like to remind that this topic is intended for posting suggestions. It's not for lengthy discussions which would spoil it. If you have a comment or want to discuss something, please create a new topic.
-
Marcos received kudos from Mr_Frog in Upgrading ESET Internet Security
I have contacted the channel manager for the APAC region regarding this. Upgrading your EIS license to ESSP should be possible. Either the distributor will contact you or I will keep you updated if the distributor writes me.