Ahmeduchiha
-
Posts
45 -
Joined
-
Last visited
Posts posted by Ahmeduchiha
-
-
Thank you for help. memory core isolation is enabled by default on my system and can't be disabled. so, I guess that I am secure from any kernel or advanced attack.
-
but, what about AMD CPU users, also, regarding ESET exploit it must be mitigated properly and not just rely on core isolation the product must not be vulnerable to such exploit as this put many users at risk specially gamers and many other users who are not aware about security and such exploits, people prefer performance so, they might disable core isolation or VBS.
I hope ESET take a step and patch this problem and to prevent any future exploits and OfCourse improve product security and self-defense or, many users might switch to other product like Kaspersky.
-
it would be great if ESET protect itself and it's drivers from any tamper as many users disable core isolation for extra performance or compatibility issues also, blocking CMD is not best approach as I use it for sfc/scannow command to repair windows or any other useful commands interactive mode or asking the user allow or block is not perfect as many users including myself don't know if it's safe to allow this process or not because I don't know if it's malicious or not that's why I fully depend on automated decisions for AV.
providing extra layer to improve ESET self-defense would be great to protect against even future threats that might bypass windows security services.
unfortunately some ESET technologies like ransomware shield relies on Intel TDT which available on newer gen from 12th gen and above this leave some users with AMD system or older Intel CPUs vulnerable to ransomware attacks.
ESET lately relies heavily on cloud to protect the system it's good but, it has it's short come which is if the internet is slow or disconnected the user will be vulnerable and ESET HIPS not enough or not good enough for new threats it's less capable than Kaspersky system watcher and application control and Microphone protection is missing in ESET.
-
I found video shows that ESET services and drivers can be tampered with and get disabled.
App Review - Eset's challenge. | MalwareTips Forums
I hope ESET fix and find solution for this vulnerability or security issue.
Best Regards,
-
Thank you for your reply,
so, ESET doesn't support Outlook for Windows and what is the difference between both apps?
and if it's not supported is there's any plan to support this app in the future?
-
Thank you for your reply, I have the new outlook version that it was Microsoft mail.
here's a screenshot for it.
-
Thank you for your reply, I tried this solution to disable WFP hoping this will work but, no luck. AdGuard certificate override ESET preventing ESET to scan HTTPS sites and the phishing test fails.
Can I make ESET scan and filter new Outlook emails for spam and malware?
-
Thank you so much for your reply, I found that Adguard for windows is the cause of the problem as it was override ESET certificate and even with disabling Adguard I faced problems but, when removed Adguard with Revo uninstaller it fixed the problem as it removed all registry and files.
I have query regarding new Outlook does ESET support Microsoft new Outlook for windows that contain Gmail and yahoo accounts to protect emails against spam, phishing and malware.
-
when I test ESET anti-phishing it doesn't block the page also, I noticed that ESET certificate not working on the browser.
I attached screenshots.
-
Thank you so much for letting me know cause I see Kaspersky users complaint from compatibility issue regarding hardware virtualization in Kaspersky I guess for safe money module in Kaspersky it can't work properly with core isolation enabled either in windows 10 or 11.
Thank you again this makes me comfortable that there is no any compatibility issues and I can use this feature for maximum security.
-
Hello,
can I use ESET internet security with core isolation memory integrity enabled in windows 11?
core isolation uses hardware virtualization technology I don't know if this cause any issues or conflict with ESET.
-
16 hours ago, peteyt said:
If your using secure browser it will warn you if it detects a remote access program but not all the options you mentioned. You simply can close the warning or you would need to find and close the remote access.
I found this as I was using TeamViewer
Thank you for your reply,
I would like to see these features without secure browser I want it to protect my normal desktop activities without running secure browser.
protecting my personal data 24/7 without any condition to run secure browser or do anything extra.
-
rollback malware actions features: it will be extremely useful in case of ransomware.
Firewall IPS and deep packet inspection: to analyze the traffic for malicious packets and prevent crypto miner or transfer personal data to hackers
keylogger protection: that encrypts keystrokes in real time to add additional layer against keyloggers
screenlogger protection: protection against unauthorized screenshots or screen recording.
remote control sessions to protect users against scammers and social engineering tactics,
By making ESET warn user that application X started remote session and monitoring your PC would like to allow the connection?
If there is suspicious action happened like deleting the user files or installing unknown software or launching app through this connection ESET must ask the user to allow these suspicious actions or not.
And ESET must always shows notification that if the user want to continue this session or disconnect this will help the user to terminate the session at anytime he like.
With every prompt ESET alert, it should pause the connection to the remote session to allow the user decide not the hacker or scammer choose what he want to prevent scammer from controlling the PC and choose to allow this session
Audio stream monitoring: prevent unauthorized apps from accessing mic
-
Okay, sorry for that I will post it over there.
-
rollback malware actions features: it will be extremely useful in case of ransomware.
Firewall IPS and deep packet inspection: to analyze the traffic for malicious packets and prevent crypto miner or transfer personal data to hackers
keylogger protection: that encrypts keystrokes in real time to add additional layer against keyloggers
screenlogger protection: protection against unauthorized screenshots or screen recording.
remote control sessions to protect users against scammers and social engineering tactics,
By making ESET warn user that application X started remote session and monitoring your PC would like to allow the connection?
If there is suspicious action happened like deleting the user files or installing unknown software or launching app through this connection ESET must ask the user to allow these suspicious actions or not.
And ESET must always shows notification that if the user want to continue this session or disconnect this will help the user to terminate the session at anytime he like.
With every prompt ESET alert, it should pause the connection to the remote session to allow the user decide not the hacker or scammer choose what he want to prevent scammer from controlling the PC and choose to allow this session
Audio stream monitoring: prevent unauthorized apps from accessing mic
-
Please submit these files for analysis and test. the password is "infected" without quotes.
-
Thank you for your reply also is it possible to make ESET password manager check if any of my email password has been leaked or compromised? also does ESET provide Dinamic Data Exchange protection agaist such attack and does it use deep packets inspection to filter data coming to PC and dll code injection protection?
I uploaded test files when I test my protection it says that I am vulnerable could you please check these files and I am thankful for your help and I hope I helped ESET with my suggestions.
Thank you
-
Quote
prevention of transmitting password over insecure connection: what I mean when visiting http website and require me to enter my username and password the connection and the website is not secure to transmit password so
This sounds like something that would require a browser plug-in, not something that can be performed while filtering the network communication via Windows Filtering Platform. As I wrote, there are currently no plans for this.
Quotevirtualization: to test unknown malware: what I mean here is kind of sand boxing technology testing unknown files using virtualization and hardware capabilities this will help ESET to identify new malware.
Files scanned by advanced heuristics are emulated, ie. run in a virtual environment to determine the genes which are essential for smart DNA detections that describe behavior and structure of malicious files. Moreover, files resembling malware are sent via the LiveGrid Feedback system for replication to ESET and subsequently new smart detections are distributed to users via the LiveGrid Reputaiton system.
QuoteURL web search advisor: what I mean here is the green mark that shows if this website in search result safe or not before visiting or clicking on the link of the website.
As I already explained, this is not planned. We already use a strong http(s) scanner that blocks access to dubious and malicious websites.
-
I have suggestion to improve ESET.
- Application control: monitoring important system files including hosts file, registry keys and prevent apps with suspicious behavior from modifying these files also categorize running app into categories trusted, or restricted or not trusted kind of white list and black list but more advanced.
- ransomware remediation: it can monitor app behavior and it's actions and take backup of these files that might encrypted temporarily and if these files encrypted by malware ESET can roll back malware action not only for ransomware but any malware can damage the system and it's registry keys.
- making the software more automated and less user dependent cause I don't know if this app malware or not, is this connection secure or lead to malware so, I would like to see ESET fully automated and take proper action automatically.
- vulnerability scanner: that searches for weak windows and apps settings also notify for outdated app or OS that might be vulnerable and fix it automatically with notification to the user.
- URL web search advisor for malicious sites, safe sites , potentially unwanted site that might drop adware and phishing sites.
- Anti banner and tracking cookies.
- protection against key logger: by encrypting all key press in real-time by this method even if malware not detected be scanner key caps will be still encrypted and the hacker will gain nothing and this method will work in games, browsers and all apps.
- microphone protection: protect against potential malware or unsafe app that might use microphone to spy on the user and action taken automatically by ESET to block connection and usage of mic.
- prevention of transmitting password over insecure connection or insecure website.
- some improvements to HIPS and behavioral blocker to identify new and unknown malware before doing any damage to the system cause in some cases the threat detected too late after the malware has done damage to the system.
- ability to disinfect malware only and saving the original file photo, audio or exe file for games.
- virtualization: to test unknown malware
- adding notes securely in ESET password manager
ESET web protection not working properly
in ESET Internet Security & ESET Smart Security Premium
Posted
I noticed that ESET safe search flagged website as malicious but, didn't block it.
but, it blocked EICAR test file and AMTSO phishing test webpage.