Jump to content

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?

Or sign in with one of these services
Sign Up

Home

Robert Andrews

Members

View Profile See their activity

Posts
2
Joined
August 20, 2018
Last visited
September 4, 2018

Kudos

Reputation badge

See kudos

About Robert Andrews

Rank
Newbie

Profile Information

Location
U.K.

Updated HIPS rules causing lots of alerts in ERA

Robert Andrews replied to Robert Andrews's topic in ESET PROTECT On-prem (Remote Management)

Hi Marcos, If I disable the HIPS rule (Deny child processes for powershell.exe), won't that leave the computers more vulnerable to ransomware attack? Thanks, Rob
- August 20, 2018
- 3 replies
Updated HIPS rules causing lots of alerts in ERA

Robert Andrews posted a topic in ESET PROTECT On-prem (Remote Management)

Hi, I'm looking for some assistance please. Earlier this year one of our customers had a security breach and when we spoke to ESET support they recommended we take a look at the following article and follow its steps to configure HIPS rules to protect against ransomeware: https://support.eset.com/kb6119/?locale=en_US&viewlocale=en_US My issue is that now within ESET Remote Administrator, we sometimes get 20-100 alerts on lots of devices, usually: ' HIPS - Start new application - 'Computer Name' - Deny child processes for powershell.exe - blocked - C:\WINDOWS\System32\Conhost.exe' Is there a way to stop these alerts being generated? It can take quite a while to clear them all every day. Thanks, Rob
- August 20, 2018
- 3 replies

×

Browse
- Back
- Forums
- Staff
- Online Users
Activity
- Back
- All Activity
- My Activity Streams
  - Back
  - New content
- New content
- Leaderboard
- Search
WeLiveSecurity
Digital Security Guide
ESET Technologies
Downloads

×

Create New...