Jump to content


  • Content Count

  • Joined

  • Last visited

Posts posted by WORKS2016

  1. I have a client that was hit hard by Lockbit. Took out all the workstations but one on the LAN and two our of 4 servers. It turned off and deleted Shadowcopies too. I have Malwarebytes installed on all the devices and it was never detected.

    While cleaning up the network I ran Malwarebytes and it didn't detect anything. Alarming and strange. I then downloaded Spy Hunter 5 and ran a scan and the ransomeware is detected. All my clients have  Malwarebytes Endpoint protection, why and how would Malwarebytes skip over the ransomware even after I know 100% it's on the network. It's done so on all devices.

  2. I watch Digital Ocean, LLC on my network closely because I've seen more intrusion attempts from this company than any other. An incident that's definitely spiked my concern is testing an RDP port using port 3395 to a test computer. Within a day this computer was endlessly being scanned on the new port down to the minute from Digital Ocean's IP.

    Anyone have any insite on Digital Ocean's integrity, if it's worth blocking the IP, etc. 

  3. There's a nasty email going around using a password they hacked from another company to attempt to extort money from me. For example, I got an email stating someone accessed my account using a password that shockingly is one I've used before. So, immediately they have my attention. I happen to use a password vault so it was easy to determine where I used it and narrow down what was really going on. Turns out the password was a basic password I used years ago on a site that was irrelevant, for example, I made a one-time payment and didn't have anything else on file. Even if someone got access there was nothing that would affect me. Didn't use the password anywhere else. This company got hacked and the keychain compromised, the hackers then took my email and password and attempted to trick me into thinking my computer was hacked, they have all my data, and they wanted me to pay a ramsome. 

    Not sure how legit this site is https://haveibeenpwned.com/ which claims to check if your email address was involved in a data breach which companies are involved. 

    What are others using to research this? My clients are now getting this same email and it's concerning for them, for obvious reasons, and I want to give them a well-rounded answer. Not just you're fine and this is spam. Of course, I want to know this information for my ongoing research involving cybersecurity. 

    Thank you.

  4. Never installed Endpoint Protection on a VM, any objections? Running 2012 Server Standard with two VM's. One is the PDC the other is the Exchange server. I read installing on the PDC can create issues with DNS and DHCP and some configuration, mainly exclusions are recommended. Didn't matter if the PDC was a VM or not. How about a VM / Exchange server? Any issues that it's a VM and does it interfere with mail flow, the information store, etc? 

    Thank you.

  5. Trying to add an additional user to the portal and get the following error "Refusing to fulfill request" any ideas? Note, I've used the email account in another portal and suspect this may be why it can't be used again. If this is the case managing multiple clients portals this will be disappointing. Hope it's not the case. 

    Thank you. 


    Screen Shot 2018-09-17 at 11.23.06 AM.png

  6. Cloud portal, Reports

    On-Demand: Select generate report changed to "Request Submitted" but nothing never happens past this point. 

    Scheduled: I have daily, weekly, and monthly reports selected but never receive any reports. 

    Is there a way to change the email address or add another email address to send reporting to? I assume it goes to the email on file under profile settings. 

    Thank you. 

  7. By definition Ransomeware Rollback: Up to 72 hours of protection for files encrypted, deleted, or modified by a ransomware attack. 

    Is this a built in feature of Malwarebytes entirely separate from our current backup solution? 

    Or, does Malwarebytes create logs that allow me to determine what time in the last 72 hours the ransomeware attack happened. Then I would use my backup to restore to this point. 

    Hard to test without an actual ransomware attack :-) 

    Thank you. 

  8. Just heard from a representative in so many words saying the channel sales managers workload or schedule is too busy. My option is too wait. I asked to speak with her manager.

    In this day with all the collaboration tools find this saddening and unprofessional. What a way to start a relationship and on my behalf this is all meant constructively. I'm certain anyone looking to make a purchase and learn about a product does not find this appropriate. 

    Thank you. 

  9. I've been trying for three days to download, test, possibly become a reseller, and test EndPoint Security without a callback. Extremely frustrating! Has anyone else had this kind of hassle. I'm not bit##ing, I just don't understand the hassle when someone wants to purchase a product and sales will not call back. I live in Austin Texas, close to becoming (if not already) the next silicon valley / tech capital and I can't get someone in sales to contact me. I've also run a IT business for 15 years. 

    PLEASE HELP :-) Thank you. 

Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.