Jump to content

jasonc

Staff
  • Posts

    26
  • Joined

  • Last visited

Everything posted by jasonc

  1. Hi, Thank you sharing your feedback and suggestions to help improve our products. We’re pleased to inform you that the majority of these requests are on our roadmap, and plan to make these available throughout the year. Column sorting will be added to various pages throughout the console. As a near-term solution, one thing that may help for now is generating an on-demand report (via the Reports tab), which will export the contents to a CSV file. Regarding the ability to filter by endpoint from the Detections page, today you can click on the endpoint name from that page, and be taken to the properties page for that particular endpoint. From there, clicking on the Detections tab will let you view data relevant to that specific endpoint. (If for some reason I've misunderstood your request, please clarify so that I fully understand your use case.) To assist with assigning additional information to endpoints with detections, we’re planning to introduce custom tags, along with the ability to display the logged-in user. A redesign of the Events and Tasks pages is also in the works, so that this data is easier to understand and manage. Part of this change includes improved filter controls, allowing you to select multiple severity levels simultaneously. We’re also making various improvements to the dashboard, including changes to how the Endpoints tile functions. One improvement in particular is the addition of a new tile to display various endpoint statuses that require administrative attention – such as those that are infected, require a reboot, has updates pending, etc. Two-factor authentication will also be available in the future. Thank you, Jason
  2. Hi - Next month's update of the cloud console will display the Protection Updates version in the Endpoint Details page.
  3. We're sorry you had issues with our program today. We've addressed the issue and here's what you need to do to fix it. Malwarebytes Endpoint Security (on-premises) First step to get the update is to disable the real-time protection. To do this in the Management console: Open up the policy the clients are on and go to the protection tab. From here, disable the ‘enable protection module’ option. Once this is done click OK. When your clients check in they will get this new policy update. Once real-time is protection is disabled and your clients can communicate, highlight the endpoints on the client screen and click the update database button at the top. After the update is applied, a reboot of the machine may be required. Note: If your client cannot resolve internal addressing, then re-installing the agent manually on the machine will need to be done. The client will not be able to reach out to the server for a policy update and will never be able to turn off the real-time protection. To learn more about what happened, please go here: If the above doesn’t resolve the issue, please reach out to support at corporate-support@malwarebytes.com
  4. Malwarebytes Endpoint Security (on-premises) First step to get the update is to disable the real-time protection. To do this in the Management console: Open up the policy the clients are on and go to the protection tab. From here, disable the ‘enable protection module’ option. Once this is done click OK. When your clients check in they will get this new policy update. Once real-time is protection is disabled and your clients can communicate, highlight the endpoints on the client screen and click the update database button at the top. After the update is applied, a reboot of the machine may be required. Note: If your client cannot resolve internal addressing, then re-installing the agent manually on the machine will need to be done. The client will not be able to reach out to the server for a policy update and will never be able to turn off the real-time protection. To learn more about what happened, please go here: If the above doesn’t resolve the issue, please reach out to support at corporate-support@malwarebytes.com
  5. We're sorry you had issues with our program today. We've addressed the issue and here's what you need to do to fix it Malwarebytes Endpoint Protection (cloud) From the Malwarebytes Cloud console, go to the endpoints pane and select all the endpoints. In the action drop-down, choose the ‘check for protection updates’ option to force an update on all endpoints to database update 1.0.3803 or higher. This should fix the problem for the vast majority of Endpoint Protection endpoints. If endpoints are still affected after applying this, please reboot the machine. If the remote agent is unable to reach out and get this update, then we must disable the web protection: In the Malwarebytes Cloud console, Go to the settings> policies> and open up the policy the clients are on. From here, go to the endpoint protection policy and turn off the “Web Protection” portion of the policy. Then: If the machine is unresponsive, reboot the machine and log in. Once in, right click on the tray icon and start a scan. This will force a database update and fix the issue. Once updated, cancel the scan and reboot the machine. When the computers are all online and updated, please turn back on the web protection again in the Endpoint Policy. To learn more about what happened, please go here:
  6. We're sorry you had issues with our program today. We've addressed the issue and here's what you need to do to fix it Malwarebytes Endpoint Protection (cloud) From the Malwarebytes Cloud console, go to the endpoints pane and select all the endpoints. In the action drop-down, choose the ‘check for protection updates’ option to force an update on all endpoints to database update 1.0.3803 or higher. This should fix the problem for the vast majority of Endpoint Protection endpoints. If endpoints are still affected after applying this, please reboot the machine. If the remote agent is unable to reach out and get this update, then we must disable the web protection: In the Malwarebytes Cloud console, Go to the settings> policies> and open up the policy the clients are on. From here, go to the endpoint protection policy and turn off the “Web Protection” portion of the policy. Then: If the machine is unresponsive, reboot the machine and log in. Once in, right click on the tray icon and start a scan. This will force a database update and fix the issue. Once updated, cancel the scan and reboot the machine. When the computers are all online and updated, please turn back on the web protection again in the Endpoint Policy. To learn more about what happened, please go here:
  7. We're sorry you had issues with our program today. We've addressed the issue and here's what you need to do to fix it. It sounds like you're running the on-premises console (Malwarebytes Managment Console) - here are specific instructions for that platform: Malwarebytes Endpoint Security (On-Premises) First step to get the update is to disable the real-time protection. To do this in the Management console: Open up the policy the clients are on and go to the protection tab. From here, disable the ‘enable protection module’ option. Once this is done click OK. When your clients check in they will get this new policy update. Once real-time is protection is disabled and your clients can communicate, highlight the endpoints on the client screen and click the update database button at the top. After the update is applied, a reboot of the machine may be required. Note: If your client cannot resolve internal addressing, then re-installing the agent manually on the machine will need to be done. The client will not be able to reach out to the server for a policy update and will never be able to turn off the real-time protection. To learn more about what happened, please go here:
  8. We profusely apologize for this issue. If you're able to remotely run scripts, this may help to resolve the problem: Run "Before Reboot.bat" as admin This step can take a few minutes if the machine is pegged on resources The endpoint should automatically reboot When it comes back up run "Post Reboot.bat" as admin Download link: https://malwarebytes.box.com/s/xigyl22ba5pz721hfjqajn5n2r9ia7en
  9. We profusely apologize for this issue. If you're able to remotely run scripts, this may help to resolve the problem: Run "Before Reboot.bat" as admin This step can take a few minutes if the machine is pegged on resources The endpoint should automatically reboot When it comes back up run "Post Reboot.bat" as admin Download link: https://malwarebytes.box.com/s/xigyl22ba5pz721hfjqajn5n2r9ia7en
  10. We're sorry you had issues with our program today. We've addressed the issue and here's what you need to do to fix it Malwarebytes Endpoint Protection (Cloud Console) From the Malwarebytes Cloud console, go to the endpoints pane and select all the endpoints. In the action drop-down, choose the ‘check for protection updates’ option to force an update on all endpoints to database update 1.0.3803 or higher. This should fix the problem for the vast majority of Endpoint Protection endpoints. If endpoints are still affected after applying this, please reboot the machine. If the remote agent is unable to reach out and get this update, then we must disable the web protection: In the Malwarebytes Cloud console, Go to the settings> policies> and open up the policy the clients are on. From here, go to the endpoint protection policy and turn off the “Web Protection” portion of the policy. Then: If the machine is unresponsive, reboot the machine and log in. Once in, right click on the tray icon and start a scan. This will force a database update and fix the issue. Once updated, cancel the scan and reboot the machine. When the computers are all online and updated, please turn back on the web protection again in the Endpoint Policy. To learn more about what happened, please go here:
  11. We're very sorry for the problem this temporary outage has caused you, and wanted to let you know that services have been restored. You should be able to access the console at this time.   A brief side note regarding maintenance windows: During these periods, all managed endpoints will continue to run scans as scheduled, and your endpoints will remain protected in accordance with your policy settings. Any data related to threat activity will queued on your endpoints, and will transmitted to the cloud console as soon as services are restored. Additionally, protection updates and application updates will always continue to run during console maintenance periods, and your endpoints will remain protected by the latest versions. If for any reason you’re still unable to access the console, please contact our Customer Success team so that we can assist. Thank you again for your patience and understanding.
  12. UPDATE - We're very excited to announce that Malwarebytes Incident Response and Malwarebytes Endpoint Protection are publicly available. You may have seen our press release: https://press.malwarebytes.com/2017/06/15/malwarebytes-introduces-enterprise-cloud-platform-next-gen-endpoint-protection-announces-validation-replacement-antivirus/ You can obtain more information or request a trial via the links below: Malwarebytes Incident Response: https://www.malwarebytes.com/business/incidentresponse/ Malwarebytes Endpoint Protection: https://www.malwarebytes.com/business/endpointprotection/ Thank you to our beta testers for your time, testing, conversations, ideas and feedback. We will continue to add the features and improvements that are being requested.
  13. We are happy to announce the public beta of our upcoming cloud-based platform for Incident Response for companies. Malwarebytes Incident Response incorporates the following key high-level features: Cloud-based management console Dashboard views Endpoint & asset management Policy and group management Scheduled scans Malware discovery and remediation This is a great opportunity for you to get an early glimpse of our new Malwarebytes Incident Response built on our new Cloud Platform. We are looking for beta testers who can deploy Malwarebytes Incident Response in a business environment to at least 5 endpoint Windows machines. If you want to become a Beta tester we will set you up with an account and instructions on how to get started. To sign up simply send an email to DL-NebulaBeta@malwarebytes.com.
  14. We are happy to announce the public beta of our upcoming cloud-based platform for Incident Response for companies. Malwarebytes Incident Response incorporates the following key high-level features: Cloud-based management console Dashboard views Endpoint & asset management Policy and group management Scheduled scans Malware discovery and remediation This is a great opportunity for you to get an early glimpse of our new Malwarebytes Incident Response built on our new Cloud Platform. We are looking for beta testers who can deploy Malwarebytes Incident Response in a business environment to at least 5 endpoint Windows machines. If you want to become a Beta tester we will set you up with an account and instructions on how to get started. To sign up simply send an email to DL-NebulaBeta@malwarebytes.com.
  15. Hi BrentB9193, Additionally, Management Console version 1.7 is currently available in beta. More information can be found here: https://forums.malwarebytes.org/forum/174-malwarebytes-management-console-17-beta/
  16. The following steps will allow you to extend the console timeout interval: Close the management console On the server where Malwarebytes Management Console is hosted, stop the management service ("MEEService" in 1.6, and "Malwarebytes Management Service" in 1.7 (beta)" Browse to C:\Program Files (x86)\Malwarebytes Management Server\ Launch Notepad as an administrator (located in C:\Windows\) and open SC.Server.WindowsService.exe.config Search for the following tag, which determines the console timeout interval in seconds: <add key="ConsoleSessionTimeoutInSeconds" value="3600" /> Increase the value from 3600 seconds as you see fit Save your changes Start the management service
  17. Beta Announcement Malwarebytes Management Console Version 1.7 (Beta 2) We are very pleased to announce the availability of Malwarebytes Management Console 1.7 (Beta 2) to our business customers. In Beta 2 (build 1.7.0.3208), we've resolved several important issues since our previous beta. This includes the following: Resolved an issue where managed Anti-Malware clients may not obtain updates via the Management Console Resolved an issue where graphs may not be properly displayed within certain reports Resolved an issue that could cause license registration to fail during upgrade if there is no network connectivity Resolved an issue where an incorrect error message could be displayed if an invalid license key is entered Resolved an issue where policy updates may not be applied under certain conditions Resolved an issue where managed clients may fail to report "offline" status during shutdown Below is a comprehensive list of all new features and functionality that will be included with this release: Syslog CEF Message Support Improved syslog functionality by adding CEF (Common Event Format) message support CSV Data Export Added the ability to export Threat View, Client View, Client Security Log, and Client System Log data to a CSV file Licensing Improvements License subscription expiration date is now displayed Locally and globally-managed seat counts (if applicable) are now displayed Implemented additional licensing improvements to clarify usage Policy Copying Added the ability to copy existing policy settings to a new policy SQL Database Improvements Added the ability to perform on-demand SQL database cleanup Added percentage indicator to show SQL Express database disk usage Anti-Malware for Business 1.80.2 Managed Client Improved update handling by requiring SSL for downloads Anti-Exploit for Business 1.08 Managed Client Added Layer0 Dynamic Anti-HeapSpraying mitigation Added Layer0 Anti-Exploit fingerprinting mitigation Added Layer0 fine-tuned VBScript mitigation for IE Added Layer1 RET-ROP gadget detection mitigation Added Layer3 Application Behavior rules Added protection for Microsoft Edge Added protection for LibreOffice Added auto-recovery for Anti-Exploit service Various bugfixes Other Items Added remote management console support for Windows 10 Improved supportability by adding under-the-hood logging improvements To participate in this beta program, please send an email to beta_feedback@malwarebytes.org and we will provide you with all necessary information. Thank you very much for your interest and participation! We look forward to hearing from you.
  18. Beta Announcement Malwarebytes Management Console Version 1.7 (Beta 2) We are very pleased to announce the availability of Malwarebytes Management Console 1.7 (Beta 2) to our business customers. In Beta 2 (build 1.7.0.3208), we've resolved several important issues since our previous beta. This includes the following: Resolved an issue where managed Anti-Malware clients may not obtain updates via the Management Console Resolved an issue where graphs may not be properly displayed within certain reports Resolved an issue that could cause license registration to fail during upgrade if there is no network connectivity Resolved an issue where an incorrect error message could be displayed if an invalid license key is entered Resolved an issue where policy updates may not be applied under certain conditions Resolved an issue where managed clients may fail to report "offline" status during shutdown Below is a comprehensive list of all new features and functionality that will be included with this release: Syslog CEF Message Support Improved syslog functionality by adding CEF (Common Event Format) message support CSV Data Export Added the ability to export Threat View, Client View, Client Security Log, and Client System Log data to a CSV file Licensing Improvements License subscription expiration date is now displayed Locally and globally-managed seat counts (if applicable) are now displayed Implemented additional licensing improvements to clarify usage Policy Copying Added the ability to copy existing policy settings to a new policy SQL Database Improvements Added the ability to perform on-demand SQL database cleanup Added percentage indicator to show SQL Express database disk usage Anti-Malware for Business 1.80.2 Managed Client Improved update handling by requiring SSL for downloads Anti-Exploit for Business 1.08 Managed Client Added Layer0 Dynamic Anti-HeapSpraying mitigation Added Layer0 Anti-Exploit fingerprinting mitigation Added Layer0 fine-tuned VBScript mitigation for IE Added Layer1 RET-ROP gadget detection mitigation Added Layer3 Application Behavior rules Added protection for Microsoft Edge Added protection for LibreOffice Added auto-recovery for Anti-Exploit service Various bugfixes Other Items Added remote management console support for Windows 10 Improved supportability by adding under-the-hood logging improvements To participate in this beta program, please send an email to beta_feedback@malwarebytes.org and we will provide you with all necessary information. Thank you very much for your interest and participation! We look forward to hearing from you.
  19. Hi Preyash, You will need to uninstall any existing unmanaged instances of Anti-Malware and Anti-Exploit prior to installing the managed clients. Best regards, Jason
  20. Hi stevekal, Thanks for the positive feedback and feature suggestion. The details of your use case are interesting and quite helpful, especially regarding central reporting. You're absolutely correct in saying that the management console does require a Windows Server OS for a good chunk of functionality. If you don't mind me asking, is an on-prem management console a requirement for you (as well as your customers), or would a cloud-based (hosted) console be a viable alternative? If preferred, you may private message me as well. Best regards, Jason
  21. Beta Announcement Malwarebytes Management Console - Version 1.6 We’re very excited to announce that the beta for Malwarebytes Management Console v1.6 is now available to our business customers! This beta includes the following new features and improvements: Syslog Support Adds the ability for the Management Console to send Anti-Malware and Anti-Exploit security events to a syslog server (in JSON format)Anti-Malware for Business 1.80 Managed Client Adds substantial improvements to core detection and removal technologyEnhanced safeguards to prevent false positives on legitimate filesResolved BSOD when scanning a drive encrypted with BitLockerResolved various issues that could result in crashes or system hangsAnti-Exploit for Business 1.07 Managed Client Added advanced configuration optionsAutomatic software updates (applies to v1.07 and future releases)Anonymous submission of exploit attemptsIncremental Updates Adds the ability for managed Anti-Malware clients to download incremental updates via the Internet​Windows 10 Compatibility The latest versions of Anti-Malware and Anti-Exploit managed clients are compatible with Windows 10Windows Server 2003-2012 Compatibility Anti-Malware managed clients are now compatible with Windows Server versions 2003 through 2012SQL Server 2012 and 2014 Compatibility The Management Console is now compatible with SQL Server 2012 and 2014 To participate in the beta program, please email respinoza@malwarebytes.org and we will provide you with all necessary information. Thank you very much for your interest and participation - we look forward to hearing from you.
  22. The Malwarebytes Product Management team wants to hear from you! In efforts to continually deliver great products, and provide IT and security professionals with the absolute best user experience, we're very interested in learning about your software deployment experience with Malwarebytes Management Console. Please share with us what has worked well for you, and areas where we can improve. Specifically, we'd like to know more about the following: Approximately how many endpoints do you support? Are your endpoints managed, unmanaged or a mix of both? How did you deploy? (e.g.: remote push, MSI, EXE, Group Policy, third-party deployment tools, etc.) What problems, if any, did you encounter? How did you solve them? What's your ideal deployment scenario? What's your role within your organization? Your experience, use cases and insight are extremely valuable to us. Feel free to post your replies here; if preferred, you may send me a private message instead. Thanks!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.