(Emsisoft) New in 2019.8: One-click network lockdown

P

Pkjfkknm

ichito said:
In/out traffic can be disabled...but Emsi servers are still connected in both ways? So...what actually is disabled in such case...and what is still enabled?
BTW...it's a bit weird "invention" because a lot of old firewall aps in the past offered it normally...OA also.
Click to expand...

all these have network kill switch

spyshelter (tray context menu)
kaspersky
bitdefender
windows firewall
others all do

any firewall can be made to autoblock unknown process by default
create firewall block rule automated
nothing new
been around forever
like you say oa eis did it for years

wasted effort making rules until a process actual does something
unknown process that sits there and does nothing
why make firewall rule ?

emsisoft prevent sophisticated code injection attack used to bypass firewall rules
block entire network failsafe for worst case
only one two few other can do same
 
  • Like
Reactions: plat, DDE_Server, catjc and 4 others
F

ForgottenSeer 58943

This is not how WhitelistCloud works at all. WhitelistCloud does not detect behaviors that “attempt to create new firewall rules or change the firewall status”. Furthermore, WhitelistCloud does not “protect the exposed Windows Firewall functions from malicious usage.”

Instead, what WhitelistCloud does is…

1. Continuously lets the end user and IT Administrators know if ONLY Safe items are running on the endpoint / network.

2. Creates a Windows Firewall rule if an unknown Not Safe item is detected, until the end user or IT Administrator approves of the item.

These are two very different things.
 
  • Like
  • Applause
  • +Reputation
Reactions: DDE_Server, oldschool, catjc and 3 others
P

Pkjfkknm

ForgottenSeer 58943 said:
This is not how WhitelistCloud works at all. WhitelistCloud does not detect behaviors that “attempt to create new firewall rules or change the firewall status”. Furthermore, WhitelistCloud does not “protect the exposed Windows Firewall functions from malicious usage.”

Instead, what WhitelistCloud does is…

1. Continuously lets the end user and IT Administrators know if ONLY Safe items are running on the endpoint / network.

2. Creates a Windows Firewall rule if an unknown Not Safe item is detected, until the end user or IT Administrator approves of the item.

These are two very different things.
Click to expand...

not new
products already do

emsisoft bb panel "Continuously lets the end user and IT Administrators know if ONLY Safe items are running on the endpoint / network."

products can do this forever by behavior monitor or even by default "Creates a Windows Firewall rule if an unknown Not Safe item is detected, until the end user or IT Administrator approves of the item."

functionality already exist
 
  • Like
Reactions: bribon77, catjc, Venustus and 2 others

Similar threads

E
    • Like
Emsisoft 2024.7: Removable Device Control
Replies
2
Views
641
Emsisoft
Divine_Barakah
Divine_Barakah
lokamoka820
    • Applause
    • Like
New Update Linux Mint 22.1 Slated for Release in December with Revamped Cinnamon Theme
Replies
1
Views
306
ChromeOS & Linux
Bot
Bot
Brownie2019
    • Like
New Update Avast One Basic It’s free
Replies
1
Views
440
Avast
Bot
Bot

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top