How to best prevent malware problems?
Most of our customers have small networks with just a few PCs, while others are single-user. Most all are running Win7 Pro. We install Norton internet Security on each one and keep it current. Many are in rural areas of the country, and most get their internet connectivity from local DSL providers, while a few are on cable or satellite.
The problem is that a few of our users have constant malware problems, where I have to run Malwarebytes and Spybot on a regular basis, often cleaning up dozens of infections each time. Recently it got so bad at one location that I had to reformat two PCs just to get them running right again.
I have never understood why Norton seemingly lets so much get by for these customers. I've tried others in the past, such as Trend Micro and McAfee, with the same results.
I'm wondering if there is a better solution. I am 'aware' of hardware firewalls, but there are many things I don't know. Do they do a far better job of preventing these infections? Are they affordable for a small network or single-user computer? Are they easy to maintain and keep updated--assuming that is needed? Do they tend to block legitimate work that the user needs to do, or have other quirks?
Or maybe there is a completely different solution that I don't know about. Any clear, detailed guidance based on experience would be greatly appreciated. TIA
The problem is that a few of our users have constant malware problems, where I have to run Malwarebytes and Spybot on a regular basis, often cleaning up dozens of infections each time. Recently it got so bad at one location that I had to reformat two PCs just to get them running right again.
I have never understood why Norton seemingly lets so much get by for these customers. I've tried others in the past, such as Trend Micro and McAfee, with the same results.
I'm wondering if there is a better solution. I am 'aware' of hardware firewalls, but there are many things I don't know. Do they do a far better job of preventing these infections? Are they affordable for a small network or single-user computer? Are they easy to maintain and keep updated--assuming that is needed? Do they tend to block legitimate work that the user needs to do, or have other quirks?
Or maybe there is a completely different solution that I don't know about. Any clear, detailed guidance based on experience would be greatly appreciated. TIA
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
willcomp
All of these exotic solutions are well and good for us experts/geeks. They won't cut it for the average home/mom and pop business users.
Amen! Run a reputable AV and a reputable anti-malware and ideally have a nice hardware firewall and 98% of threats will be averted with very little user training (maybe some scolding though :-) ) As the IT professionals, it is our job to protect the non-savvy user without confusing the crap out of them.
~Jon
~Jon
In practice, Invincea is about as "exotic" as a web browser.
One of the least technically sophisticated employees in my company of 25,000 would infect her machine nearly every other week. After installing Invincea (under Dell Data Protection | Protected Workspace), she hasn't had any infections which weren't detected and automatically reverted. This required no addition skill or interaction on her part.
Perhaps there is a reason Dell is deploying this product globally as part of their new base image for certain systems. Then again, if you look for a reason to make another person wrong (in your own mind), you'll find it.
One of the least technically sophisticated employees in my company of 25,000 would infect her machine nearly every other week. After installing Invincea (under Dell Data Protection | Protected Workspace), she hasn't had any infections which weren't detected and automatically reverted. This required no addition skill or interaction on her part.
Perhaps there is a reason Dell is deploying this product globally as part of their new base image for certain systems. Then again, if you look for a reason to make another person wrong (in your own mind), you'll find it.
x66_x72_x65_x65, Thank you for the information. It's new(s) to me. Helpful information is always welcome. Cheers. :-)
In your company of 25,000!
I know you were the last to post before it went south, but I don't think the comment was directed at you as much as the diversity and complexity of the thread in general. My topologies if it was improperly stated.
Jon
Jon
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
:) Allow the comment:
"Why has NO ONE mentioned running as NON-ADMIN? That's 99.9% of the problem btw"
Now that's a very strong assumption. Since malware authors have to fight with UAC since 7 years, they don't still write 99.9% of viruses to only work when admin & UAC is off, come on.
Many run in the user space, hard to say if that's the majority... but still, you are right, always one of the most important things.
"Why has NO ONE mentioned running as NON-ADMIN? That's 99.9% of the problem btw"
Now that's a very strong assumption. Since malware authors have to fight with UAC since 7 years, they don't still write 99.9% of viruses to only work when admin & UAC is off, come on.
Many run in the user space, hard to say if that's the majority... but still, you are right, always one of the most important things.
99.9% is a little overstated for win7 :) But it does cut down on the users ability to infect themselves as well, making them ask permission for something often helps to curb or gi ve them pause. users are users, and they don't know what they are doing 99.9% of the time :)
-rich (aka mr. 99.9)
-rich (aka mr. 99.9)
1. Symantec says that Antivirus is a dead end solution. It is especially true for their product. We have left it.
http://www.theregister.co.uk/2014/05/06/symantec_antivirus_is_dead_and_not_a_moneymaker/
2. Get something on the network, like others, I recommend anything but Symatnec.
3. Use a UTM firewall. I recommend Sonicwall, with their Comprehensive Security Services.
http://www.theregister.co.uk/2014/05/06/symantec_antivirus_is_dead_and_not_a_moneymaker/
2. Get something on the network, like others, I recommend anything but Symatnec.
3. Use a UTM firewall. I recommend Sonicwall, with their Comprehensive Security Services.