|
Mustache Ride posted:Netflix is dumping their AV: http://www.forbes.com/sites/thomasbrewster/2015/08/26/netflix-and-death-of-anti-virus/ Honestly as much as I hate AV, we're not there yet. But I eagerly await some C level exec at Netflix taking half the network down because he browsed the wrong porn site.
|
# ¿ Aug 26, 2015 20:20 |
|
|
# ¿ May 17, 2024 18:58 |
|
OSI bean dip posted:Not really. The big problem with SSDs is that internally they have their own software to manage the flash memory--IE: block off writes to specific places, et cetera. If the software stack is somehow infected, there is probably no real reliable way to fix it short of getting friendly with JTAG then praying that you don't brick your drive in the process. For people like most of those that post in this subforum, until we can get viable action items from security vendors on theoretical SSD malware, it's all just farting in the wind however. SSD's in laptops are becoming pretty ubiquitous, and the best way to guard against data loss is to treat the laptop as a "Portal to work" rather than the place work itself happens. If one of our managers dumped his laptop in the pond/got it infected with the nasties our net loss here would be the laptop itself. The data's all going on a network drive that gets snapshotted on a fairly consistent basis to the point where I can walk back to minutes before the infection while simultaneously flattening the laptop. Net loss of work is at most what was done between infection and flatten process (And even then you probably won't lose much). I generally flatten any virus laden PC, nine times out of ten it will take far more effort for me to dig down and see what's going on and I don't have the resources. But I also recognize that I created an environment that is suited to this methodology and solutions like this are expensive, or can be at any rate. EDIT: I do have to say I'm entertained whenever someone has a horror story about Crypto*, because in my environment that poo poo was the biggest damp squib ever. Flatten PC, roll back shares from immutable snapshot, take nap.
|
# ¿ Oct 27, 2015 21:34 |
|
Notorious R.I.M. posted:I still don't get why we're nitpicking over whether a bunch of heuristic-based tools will happen to detect a rootkit when we can fix the problem by formatting and reloading from a recent backup. If this is any harder than running X, Y, Z, A, B, C, C# D, E, and F virus scanning tools that you use, maybe you should work on unfucking your / your client's awful IT structure instead of hoping that the 95% fix works 100 times in a row. Yeah running 300+ cleaners sounds like a time sucking pain in the dick.
|
# ¿ Oct 29, 2015 15:10 |