Old school anti-virus depends on virus definition signatures to recognize and block malware threats. Think of signatures as wanted posters where the sheriff shouts out “that’s the guy, let’s get him.” This system worked well in the 90’s when there weren’t that many viruses around. In present day there are over a billion viruses in the wild, with 350,000 new ones launched every day. You can see the limitations of scanning through hundreds of millions of virus signatures.
In addition, viruses are polymorphic; they continuously modify themselves to become less recognizable to security software. Think of the outlaw in the poster, growing a mustache or shaving one off, maybe a new hat. Anyway, typical anti-virus protection fights a losing battle to keep up with new and slightly changed malware threats.
Have you heard of file-less attacks? No executable file means that anti-virus has nothing to compare to its signature list. File-less attacks use Windows files to perform their dirty work. No file attachment or download advises the resident anti-virus software, “nothing to see here.”
In response, we looked for a better solution and found SolarWinds Endpoint Detection and Response, powered by SentinelOne. This security service is built on eight powerful Artificial Intelligence (AI) engines to scan and detect dangerous behaviors and respond instantly. There are no threat definitions to download, no daily scans to slow your computers down. Fully automated detection and response kills, quarantines, remediates damage, and rolls back the system to its pre-attack state.
Watch the video below of our SentinelOne Endpoint Detection & Response rollback of ransomware attack and encryption demonstrated by SolarWinds' Andrew Miller. EDR crushes this ransomware attack.
Our advice is to uninstall your anti-virus and move up to better security with Endpoint Detection and Response. IT network security requires multiple layers of protection. Slingshot uses Endpoint Detection and Response along with web protection filtering, email security filtering, patch management and risk intelligence scanning to protect our clients. If you’re looking for a better way to protect your business, talk to us. We are your source for Tech Support on Cape Ann.
Comments