One of the most frequent calls we used to receive at Plummer Slade would always be about a pop-up or strange software showing up on a PC. Pop ups, spam, and these “mystery” applications are almost always classified and caused by malicious software (more commonly known as malware). Malware is not considered to be a computer virus, so most antivirus programs will not detect a malware infection. Malware is its own type of threat, and several products have been created to detect and remove malware over the years. One of the most trusted products has been MalwareBytes.
Over the last year, MalwareBytes has created a new product for business customers, MalwareBytes Endpoint Security. This edition contains the MalwareBytes program that PSI has used for years to clean PCs. This version builds on that by adding real-time protection, malicious website blocking, and includes a server console for managing all of your endpoints. The console can even schedule scans of each endpoint on your network.
One of the largest malware infections of 2015 was the Cryptolocker malware infection. Infected PCs would have all of their documents encrypted, and if they had access to network file shares, the file shares would also be encrypted. This would lock all users out of their documents and data. To decrypt your files, a user would have to pay a ransom to an unknown third party. No antivirus software was able to detect Cryptolocker on a network. MalwareBytes was able to use Anti-Exploit (MBAE), to detect and stop Cryptolocker on network. They were the first to do so, and remain one of the only options to stop similar attacks.
Since implementing MalwareBytes Endpoint Security as part of PSI Proactive Care, the number of calls from clients that would indicate the client has a malware infection has decreased. PSI technicians review the logs within the MalwareBytes console at each maintenance visit to ensure PCs are being regularly scanned and disinfected if required. The console controls all the settings and has instructions for how to clean and remove threats, historical data about which computers had malware, the ability to integrate with active directory, and the ability to email alerts.
The use of MalwareBytes is part of Safe Computing, and is reviewed during PSI safe computing seminars. PSI recommends all clients use MalwareBytes on top of existing antivirus software, and follow PSI’s Safe Computing practices. If you are interested in MalwareBytes, please contact Plummer Slade today.