KSN helps to detect more efficiently and quickly threats and false positives. It, indeed, gives you more security. If you have it disabled, other Kaspersky users may be less secure. If others have it disabled, you are less secure than you could be. Everybody using KSN implicates higher response and detection rates.It seems to me that the main purpose of KSN is to give Kaspersky live data to help them improve their malware signatures and product. This benefits Kaspersky users as a whole, but doesn't provide benefits to the individual.
Therefore I am not convinced that turning on KSN provides any security advantages. If you switch it off, you are protected just the same.
Does anyone agree/disagree with this ?
it benefits the individual cause it can detect things that don't have a signature for you yet but the cloud data is available. it's beneficial for everyone.It seems to me that the main purpose of KSN is to give Kaspersky live data to help them improve their malware signatures and product. This benefits Kaspersky users as a whole, but doesn't provide benefits to the individual.
Therefore I am not convinced that turning on KSN provides any security advantages. If you switch it off, you are protected just the same.
Does anyone agree/disagree with this ?
Kaspersky updates your offline malware signatures about twice a day. That is kind of slow. If you are connected to KSN, then you have a better fighting chance against zero-day malware, because you are more up to date.
The original poster wrote: "I have activated the application control that acts as an antiexe"
That statement is not so accurate. Application Control is not an antiexe. If you also enable Trusted Applications Mode, and you tweak settings a bit, then you have an antiexe setup. But Application Control on its own is not antiexe.
TAM loves to mess with Windows update too, had it happen once. Application control properly configured > TAM.You can set up Application Control to be almost an anti-exec for any files newly introduced to the system:
1. Set Application Control to move any untrusted files to Untrusted group; and
2. Disable "Use KSN rules for applications."
You have to do that after training Application Control for a few days at least.
You cannot disable "Trust digitally signed files because all your Trusted files will eventually get moved to Untrusted group.
I know a lot of people are enamored with TAM, but TAM is for n00bs. When you enable it there is a big message that states so. Configuring Application Control and using it properly is more effective than TAM. With TAM enabled one can install programs and execute files unless the other settings are adjusted. TAM just does a file lookup and notifies the user of unknown files and asks them what they want to do - allow or block. It is nothing special.
TAM loves to mess with Windows update too, had it happen once. Application control properly configured > TAM.
On my system (KIS 2018), TAM automatically blocks files that are not on KSN whitelist. Even if Kaspersky is in interactive mode, TAM still blocks.I know a lot of people are enamored with TAM, but TAM is for n00bs. When you enable it there is a big message that states so. Configuring Application Control and using it properly is more effective than TAM. With TAM enabled one can install programs and execute files unless the other settings are adjusted. TAM just does a file lookup and notifies the user of unknown files and asks them what they want to do - allow or block. It is nothing special.
On my system (KIS 2018), TAM automatically blocks files that are not on KSN whitelist. Even if Kaspersky is in interactive mode, TAM still blocks.
What can override it?