Jump to content

Ninehundred

Members
  • Content Count

    2
  • Joined

  • Last visited

About Ninehundred

  • Rank
    New Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. I appreciate you taking the time to reply, but I'm afraid this answer will not do. We've looked over the materials you referenced and even read the entire chapter on Endpoint Protection, pages 18 - 24. Those settings address controlling applications that run and perform actions. A File Server does not RUN programs. It stores files. I can't see how 'behavior-based' protection can be applied to a File Server which acts as a repository of files. Most of the files on a File Server are data. There are virtually no executables. My reading of Malwarebytes materials suggests it focuses it's attention on executable analysis and does not concern itself with data files. I could be wrong, but I assume it will not attempt to scan Word or Excel files for malware in the form of scripts and macros?
  2. We've been long-time users of Malwarebytes. Our typical usage has been to deploy to desktops and laptops. This past weekend we purchased another license and deployed it onto a corporate File Server. This morning during a staff meeting the question was raised about whether or not the product is suitable for use on a File Server? Can someone confirm or deny this use case? If it is deemed appropriate to protect a File Server, we'd appreciate a reference to the technical materials that describe the benefits. We've been reading various blogs an articles on the Malwarebytes website, and it seems they are distinguishing anti-virus and anti-malware. That anti-virus is signature-based, whereas anti-malware is behavior-based. But we cannot find details about what specific behaviors the software watches for and catches. This makes it challenging to evaluate whether or not it is suitable to protect a File Server. The Malwarebytes description of the differences between anti-virus and anti-malware is also somewhat confusing. If Malwarebytes is strictly behavior-based, why does it perform a whole disk scan? Wouldn't scanning files at rest imply it is signature-based as well? The deeper we dig into this topic, the more questions we seem to uncover. Most of them revolve around a more precise explanation of exactly what Malwarebytes is doing. What is it looking for, and what is it protecting against? I understand there is a reluctance to reveal too much information for fear of arming the criminals and protecting Malwarebytes' corporate advantage, but without more technical details I can't see how a system administrator can evaluate the product use cases.
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.