Aces High Bulletin Board
General Forums => The O' Club => Topic started by: Mister Fork on August 30, 2018, 08:54:28 PM
-
Went with Webroot last year for $30 for 5 devices. Now it's $80 and NO discounts allowed. So, frack you webroot. Ur business model sucks.
Other than Webroot, what is another affordable and good AV product with low CPU impact? Any recommendations guys?
-
I use ESET.
-
Wow. $80 a year for 5 devices....let's work that cost out...........
................ $0.05 a day.
Yep. You are pissed at a company selling you protection for just 5 cents a day.
Have a look in the mirror and decide what value you put on your protection.
-
Fess, it's double the price for exactly the same product with zero additional benefits. It's a classic bait and switch pricing model. Sucker you in with a lower inital price, renewal comes by and WHAMMO. Pay double beoches. Pay up! No, HEY, let me incentivize you to stay...
I'll see if I can squeeze 20 bucks out of them.
-
I use ESET.
I'd recommend looking at NSS Labs AEP test results/SVM. Eset did ... ok...but you could do better. Kaspersky ranks highly. I'm trialing Sentinel One at the moment (dressed as a Sonicwall product) and it seems pretty good. I'm a bit disappointed webroot is not in the test. Beware the TCO is a bit subjective.
-
I use Kaspersky Total Security
-
I use Kaspersky Total Security
I have used this for the last few years and have had absolutely no problems with it. It has no effect on game play, frame rate, etc.
-
I use Avast.
I've used lots of stuff: Norton, Symantec, McAfee, Microsoft, Trend, BitDefender, AVG, Avira, and maybe some I don't recall.
I like Avast more than those.
-
I use Avast.
I've used lots of stuff: Norton, Symantec, McAfee, Microsoft, Trend, BitDefender, AVG, Avira, and maybe some I don't recall.
I like Avast more than those.
They say Avast is one of the most problematic ones alongside with Kaspersky, Norton, McAfee etc... However, I've been happy with the free version of Avast, too. There's a couple of things you can do to tame it - or any other antivirus as well. It starts at the installation stage: Always do a custom install and disable all the features that you either don't need or that come with an extra price tag. In the case of Avast, the Minimal setup is where I start at, adding the browser shield and browser cleaner and potentially disabling the e-mail shield if no e-mail client program is being used. After major updates I go to Programs and Features in Windows, double click Avast, choose Modify and check if there's some new paid feature lurking.
When all is installed and good, I then go to the Settings and try to find every instance for Exceptions, browsing and adding C:\HitechCreations\* or aceshigh.exe where applicable, or the server IP addresses. That should minimise the negative impact of anti-virus checking every single package the game sends.
Bear in mind that no anti-xxx program is fool proof. Having one adds to the safety net, though, so using one is good practice.
-
I used AVG - was ok till got me BSOD, that used Avast for a while and then Windows Defender (by accident since I didn't know it was active)
I always turned them off for AH play.
Now I don't use AV at home PC at all since through all carer I spent in computer industry I witnessed more damage created by anti-virus programs then viruses themselves.
-
Now I don't use AV at home PC at all since through all carer I spent in computer industry I witnessed more damage created by anti-virus programs then viruses themselves.
I've witnessed the same happen with Windows updates. There's a reason why big companies using dedicated programs in a unified environment have trained IT personnel checking every update and any other third party program in a sandbox to make sure installing them won't cause any damage. They also run hardware firewalls and other protection in the background unknown for the users. Not to mention they have real time backup.
For the less savvy average Joe having to reinstall his system in case of a really nasty malware hit is less destructive so in my opinion it's better that he's at least trying to stop malware than spreading it because of an unpatched/unprotected system. I still remember the Blaster worm epidemic caused by people not having installed a year old update.
-
Now I don't use AV at home PC at all since through all carer I spent in computer industry I witnessed more damage created by anti-virus programs then viruses themselves.
I've never observed that, I've been in IT for 34 years and specialize in the security side. I've seen plenty of damage inflicted by malware, and $$$ lost.
-
Just do the right security settings and get rid of anti-virus.
-
Over 30 years not using any AV and never had any issues, BUT it does a bit of time to mitigate the paths into a system. It is not something I recommend any casual computer user do.
I have also kept my systems behind hardened firewall appliances.
I am with artik though. I have seen too much damage done by the over-the-counter, consumer grade AV programs. As much as any virus/malware would do.
-
Over 30 years not using any AV and never had any issues, BUT it does a bit of time to mitigate the paths into a system. It is not something I recommend any casual computer user do.
I have also kept my systems behind hardened firewall appliances.
I am with artik though. I have seen too much damage done by the over-the-counter, consumer grade AV programs. As much as any virus/malware would do.
+1
You should always be vigilant with your IT environment. Do you want computer herpes, 'cause complacency is how you get them!
-
Avast, hands down.
:cheers: Oz
-
ESET on all computers (except 1 PC using "0" antivirus software)
even use ESET on my smartphone and other devices
antalytics report on most all the major AV / Enternet Security softwares came out recently (maybe was a few months ago)....
I've tried "Out Post", "Vipre" and a whole mess of others......
I'm sticking with my ESET ...... and use Malwarebytes and it's little tool box of stuff like rkill, etc.... If I find a need, depending on who's computer I might be fixing or upgrading.....
TC
-
Try whatever your internet provider offers for free. Free is almost as far away from "ripoff" as you can get. Mine offers f-secure. Seems only partially annoying, no idea if it's working except that my computer still works. Annoying part about it is that if you don't turn on 100% of its features like web browsing protection and sample submission, windows 10 will occasionally report that your computer is totally insecure and you need to take immediate action. That's annoying.
-
Avast, hands down.
Thanks for my morning laugh :)
-
My niece must of been trying to get my one laptop's immune system to fight viruses on it's own, she poured a whole lot of orange juice in it. In her defense that laptop didn't get any viruses after that.
-
I use Malwarebytes AND windows defender... its all I can afford :uhoh
-
Yeahhhhhhhhhhh nahhhhh
NSS Labs AEP test, sorry couldn't find a higher quality pick. Horizontal scale is TCO (cost$), so ignore that. Vertical scale is effectiveness, that's the one to note. The bottom left one is malwarebytes, unfortunately. This is the test enterprise professionals look at. Most of the other stuff is "sponsor" influenced.
(https://researchcenter.paloaltonetworks.com/wp-content/uploads/2018/04/NSS-Labs_2018_Advanced-Endpoint-Protection_Security-Value-Map-1.png)
If you want to know more google the NSS Labs Advanced Endpoint Protectio SVM 2018
edit: found a better pic
-
That's a nice chart. However, as with all test reports, some names are missing. Apart from half freebies like Avast! and AVG, I wonder where F-Secure is. Isn't their Chief Research Officer Mikko Hyppönen among the most valued experts in cyber security, after all? Or didn't they just want to pay for being ranked? -Edit: They either are too small, don't act on the enterprise security branch or aren't innovative enough.
-
You should be very careful regarding "effectiveness" percentage since it is meaningless if you don't know what is the real false positive ratio. And the false positives are once that make our lives measurable.
-
That's a nice chart. However, as with all test reports, some names are missing. Apart from half freebies like Avast! and AVG, I wonder where F-Secure is. Isn't their Chief Research Officer Mikko Hyppönen among the most valued experts in cyber security, after all? Or didn't they just want to pay for being ranked? -Edit: They either are too small, don't act on the enterprise security branch or aren't innovative enough.
This is for NextGen AV/aka Advanced Endpoint Protection. Which those other products tend not have (yet). NSS Labs will invite vendors to participate, if the vendor declines then they will usually just buy the product themselves. Some vendors OEM these products so it is not necessary to review the OEM'd versions (for example both fortinet and sonicwall use Sentinel One).
Anyhoo there is now a cylance home offering found here: https://shop.cylance.com/us . I just ordered it myself as my SonicWall license (Sentinel One) just expired. I used cylance a couple of years back and was highly impressed.
-
You should be very careful regarding "effectiveness" percentage since it is meaningless if you don't know what is the real false positive ratio. And the false positives are once that make our lives measurable.
If you google for the report they list all those details.
-
This is for NextGen AV/aka Advanced Endpoint Protection. Which those other products tend not have (yet). NSS Labs will invite vendors to participate, if the vendor declines then they will usually just buy the product themselves. Some vendors OEM these products so it is not necessary to review the OEM'd versions (for example both fortinet and sonicwall use Sentinel One).
Well, can't tell about the freebies, but F-Secure has been global in the Endpoint protection market for ages. As far as I know, they aren't an OEM of any of those on the list.
For clarity, I don't sell any software whatsoever. I just install what my customers want and if asked tell them what I like or dislike. Knowing how big F-Secure has grown in Europe it feels odd that they're not on the chart.
-
Well, can't tell about the freebies, but F-Secure has been global in the Endpoint protection market for ages. As far as I know, they aren't an OEM of any of those on the list.
For clarity, I don't sell any software whatsoever. I just install what my customers want and if asked tell them what I like or dislike. Knowing how big F-Secure has grown in Europe it feels odd that they're not on the chart.
Read my lips... F-Secure do not do any Advanced Endpoint Protection products. They only do traditional AV, which in laymans terms is FUBAR. What you're asking is "Hey why isn't Fred Johnsons Horse Drawn Buggys tested in Supercar Magazine?".
AEP aka Next Gen AV does stuff like Cloud based sandbox/AI/Machine Learning as well as a huge raft of non-signature based analysis. So when a previously unseen piece of malware lands it will shut it down.
I put Cylance through some testing a few years back and had impressive results with it (including defeating two genuine malware attempts that the signature based stuff didn't have protection for for up to 6 weeks). I did check f-secures product page and they didn't not have any of this capability.
For clarity I don't sell software either. I work in government as an internal security consultant.
Also there is a 30 day trial, feel free to give it a spin. If I put money down for it is that not a decent recommendation?
-
Oh, didn't notice the word "Advanced" ...
-
Oh, didn't notice the word "Advanced" ...
or the post I made explaining it?
This stuff does work and is different to your regular AV. Most of it is enterprise only (ie 200 seats minimum). So why did I post it? More recently the OEMing of products like Sentinel One have mean't that you can now get it down to about 5 seats minimum (which is a typical household install), and now Cylance offer their home product down to 1 seat (still uses the enterprise engine).
Most likely other vendors will follow in offering the ATP capabilities to home.
-
---AEP aka Next Gen AV does stuff like Cloud based sandbox/AI/Machine Learning as well as a huge raft of non-signature based analysis. So when a previously unseen piece of malware lands it will shut it down.
---I did check f-secures product page and they didn't not have any of this capability.---
I wonder which page you visited. In https://www.f-secure.com/en/web/business_global/endpoint-protection (https://www.f-secure.com/en/web/business_global/endpoint-protection) they mention using next gen technology such as behavioral analysis and machine learning plus a cloud based thread analysis. Am I understanding something wrong? Or are they just using big words that don't match the product like the Chinese web shops?
-
Using such technology is different to deploying such technology to the client. All vendors have used such systems for a long time, internally. Ai/Sandboxes/ML are typical deployments for AV vendors to analyze samples. But that then generates signatures that go to QA then eventually get deployed. Many AV vendors use the same systems - there is a whole layer of products above the AV vendors like Lastline (check lastline.com ).
Some of the f-secure stuff is like old school IPS where it looks across the entire enterprise for anomalies and that is cool. But it is not the same as ATP/NGAV/AEP.
Here's a comparison of how Sonicwalls ATP works...
- user downloads a file of interest (executable, pdf, office doc, etc)
- file is hashed and compared with a local database/known verdicts, then cloud database. If it is a known good file it is allowed through, if it is a known bad file it is blocked
- local and cloud AV signature based scan occurs, if bad then it is dropped <- this is at less than a second
- unknown verdict results in the file being submitted to the cloud
- multivendor AV scan engine (65 vendors, including f-secure) scans the file. if it is bad it is blocked <- this is at 4 seconds
- unknown verdict results in the file being passed onto 3 sandbox engines (Lastline, VMRay, and Sonicwalls own)
- file is analyzed and a verdict passed back <- this is at 2-4 minutes
- if the file is bad then depending the device config it is either blocked or alerted on
- if the file is bad then it is flagged for further analysis so that a signature can be created, qa'd and released within 24 hours
This is done on either the network (firewall), and/or via email security systems as well. Their PC client uses a combo of this and sentinel one.
This catches malware for which no signature/behaviour exists in traditional av engines. Globally they catch around 800 new unique malware per day (as in send it to any traditional av vendor like f-secure and it comes through as clean).
-
Wow! Just thinking about the level of education of the IT personnel in smaller companies!
-
Wow! Just thinking about the level of education of the IT personnel in smaller companies!
What about it? :)
-
What about it? :)
Hmm... I should have mentioned I mean companies who aren't IT related by any means.
-
Wow! Just thinking about the level of education of the IT personnel in smaller companies!
I often find the larger the org the more out of touch they are. Smaller/mid sized companies can be more agile. Sometimes with large scale comes a bit of complacency and arrogance.
-
It is also easier to hide ineptitude in a large company. Small companies, not so much.
I know a number of IT people who would be out of work if they had to work for a smaller company, simply because they can hide in a larger company.
I could tell you some true horror stories about the IT departments in some Fortune 500 companies.
-
Of interest: https://www.zdnet.com/article/nss-labs-files-lawsuit-against-crowdstrike-symantec-eset-amtso/