-
Posts
99 -
Joined
-
Last visited
Everything posted by Mauricio Osorio
-
Felipe, although the message does not indicate that it is a license activation issue: I have solved it by sending an activation task over all the computers that presented this alert. Hope this help you.
-
I have the same problem. Is there a log that we can check? Thanks.
-
Hi guys!. Problem Summary: The client reports that ESET Cloud Office Security (ECOS) has been allowing multiple phishing emails through despite being active. They request assistance in elevating detection levels to mitigate the associated risk. Client Description: The client has been receiving an increasing volume of phishing emails over the past few weeks. ECOS, which is set up with default settings, has not detected or blocked many of these emails. The client is concerned about the security risk this represents and desires a solution to elevate phishing detection. How can we elevetade or improve phishing detections? Thanks a lot.
-
The client made an arbitrary IP change without changing the routing of the agents and now cannot return the old IP. Is it possible to carry out a solution that allows the change of the IP in the agents in a massive way? It should be noted that the agents were password protected and when performing a GPO installation the addressing does not change, apparently for this reason. How can I help this client?
-
If a customer buys ESET Protect Complete On Premise, can they use ESET Cloud Office Security?. My client has had ESET products for more than 10 years and needs to use the On Premise console, but we have doubts about whether the ESET Protect Complete On Premise version can be purchased and especially if he has no problems using ECOS. Thanks for your help!
-
Hi guys A client of ours asks us if it is possible to disable password encryption, this is because he fears that a user encrypts information and it will be lost if the user does not provide the password or worse if he dies. Or if there is any way to recover that information in case the password is not found. How can i help my client?.
-
A few days ago we managed to get one of our clients to change their protection product to ESET's. But we haven't been able to effectively detect spam and phishing in your emails. Is there any recommendation or good practice that you can recommend us? The client tells us that with his previous product the user had at his disposal a button to report phishing or spam, something that is very useful for users. I don't think ECOS has this option, but how can I get it to better detect phishing and spam?
-
New vulnerability in ESET or Maybe a fake news
Mauricio Osorio replied to Mauricio Osorio's topic in General Discussion
Thanks!. -
A video has appeared on youtube that talks about an alleged vulnerability in ESET products. The video is very recent and its link does not work. Does anyone know if it exists or is it definitely fake news? Here is the link:
-
My client cannot enter EBA
Mauricio Osorio replied to Mauricio Osorio's topic in ESET Licensing for Business
Hi Emilota, I sent you the message already Regards. -
Hi guys, My client has lost his access to the eba.eset.com portal and when we try to regain access to that portal, the portal eba.eset.com does not send us the email for the change, although it is the same email that appears registered in the licensing. We have asked for local assistance but they haven't answered us for 7 days and the customer is very upset. How can you help us? Please for things like these, which are very simple but very important, you can lose a customer.
-
Hi guys, On this occasion I would like you to clarify this case for me. We have a customer who has an Oracle Linux server and has a problem with this malware. We have performed the installation of ESET File Security and we have these results after the system scan: Here they are in text in case you want to copy it: 14 de octubre de 2021 10:02 file:///u01/Oracle/Middleware/Oracle_Home/coherence/plugins/maven/com/oracle/coherence/coherence-work/o84www Linux/CoinMiner.RT troyano Eliminado 0FE31D4AAA7C108C62532F68BC18DC8427F053A8 14 de octubre de 2021 10:00 file:///home/oracle/c3pool/xmrig Linux/CoinMiner.BK aplicación potencialmente no deseada Desinfectado por eliminación 04FCE56E89D790C3EDAA808E29BDDCE0147962D3 14 de octubre de 2021 10:00 file:///home/oracle/c3pool/config_background.json Win64/CoinMiner.RO aplicación potencialmente no deseada Desinfectado por eliminación 25135CEB79CA61F723029CFA430B3965B91FE1F4 14 de octubre de 2021 10:00 file:///home/oracle/c3pool/config.json Win64/CoinMiner.RO aplicación potencialmente no deseada Desinfectado por eliminación DDBDF28407927F39C16A4E0EB0F731E87C50A408 The problem is that the process that led us to discover that it is a CoinMiner does not disappear and if we stop it it reappears again. Here is a screenshot of the process: As you can see, the entire processor is consumed by this process. We suspect that they may be tasks left by the miner but we don't know how to identify and remove them from the system. Shouldn't the antivirus remove them? I attach the logs taken after the removal of the malware with the ESET File Security antivirus. (customer_info.zip) What should I do in this case? customer_info.zip
-
Hi @MartinK thanks for your answer, This is the current proxy configuration in the agent policy: And this: It is unconfigured. I don't know what a good idea it is to configure the use of the http proxy in the agent because, as you saw above, the client has published the EP console with a public IP, but if that solves the problem we could do it. I will try to find another computer that has the problem with the connection, to enable full verbosity, because this one that we reviewed already connects well after restarting the eraserver service from SSH.
-
I have been working with ESET products for a decade and I think it is one of the best options at the level of cybersecurity products and I would like to open this space so that we can share from day-to-day practice those security recommendations that we can make for you to our customers, but based on the findings of security solutions such as ESET Endpoint Security and then reported in the ESET Protect management console. Why? Because it is not usually very clear what I should do with those discoveries or reports that ESET Protect generates. I wish we could answer the following questions in this space: How can I reduce the number of incidents reported in the ESET Protect (EP) console ?: Based on the request of a client who belongs to the public health system of my country and who is alarmed because his network registers more than 2500 security incidents per month in the threats tab. Now my recommendation was to further limit users' internet access, block the use of USB storage devices and generic security recommendations, but I felt that we were wasting precisely all the information collected in EP and that the recommendations should rather than be generic. be based on the findings that are recorded in EP. At what time or scenario can I recommend to a customer that they should use ESET Dynamic Threat Defense or ESET Enterprise Inspector ?: In addition to the interest of cross-selling, how can I justify to my client that it is time to strengthen their network with any of these tools. Is there any non-generic factor that can justify making this recommendation? Example: We have detected that you have a large number of detections that come from emails and we think it would be a good idea for you to have sandboxing in the cloud at this time. And perhaps many other questions that you could contribute from your experience. As a purpose, what I would like is to take advantage of the information EP gives me and how I can make this information an added value for my clients. Welcome everyone!.
-
Hi guys, I would like your help with this case. A customer uses OVA ESET Protect, but computers usually give this error when connecting to the console: And we have found a way to solve it and it is by restarting the eraserver service from the SSH connection. This is obviously is not a solution for the client because it is annoying to do this every time. If it is helpful I attach the logs of the OVA server. Regards!. customer_info.rar
-
Console constantly closes with error
Mauricio Osorio replied to Mauricio Osorio's topic in ESET PROTECT
Ok @Peter Randziak i'll let you know what's the result. Regards.