• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 349
  • Last Modified:

Does anyone have an example of a Spyware policy

I'm working thru my latest audit and not having a written spyware policy is one of the things I need to rectify. I have searched the net and I cant find any good examples of spyware policies.
The policy needs to have detailed steps on what will be done in case of a spyware infection. I have tried to write a couple and they sent them back saying they are not good enough.
0
bankadmin
Asked:
bankadmin
1 Solution
 
David-HowardCommented:
This is going to be tough bank as each type of spyware/malware may (and usually does) require different removal instructions.
For example: for some types of malware you can simply install and run malwarebytes for removal. Where others may require a utility like ComboFix that has a completely different set of installation and run requirements.
At a minimum I would say that once malware or viruses are detected, that the I.T. department is to be notified, detailing where the user was at (web wise) or what they were doing when the malware was discovered. Then the pc should be shut down if not disconnected from the network. Scans should be performed in Safe Mode.
0
 
bankadminAuthor Commented:
Thanks for the input
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now