This is accomplished by observing a program’s behavior in real time while leveraging its actions against a behavioral profile. When a reputation ranks highly, the application will skip it altogether, effectively minimizing scan times and lowering overall system resource utilization.Īdditionally, the latest rendition of Symantec Online Network for Advanced Response (SONAR) introduces policy enforcement, which helps block new malicious processes before definitions become available. The virus scanner uses this information to decide whether to scan a given file.
To achieve this, it has introduced Symantec Insight, technology that uses data collected from more than 175 million opt-in customers to rate the safety of and assign reputations to almost every executable (.exe) file available. Symantec seems to have gone to great lengths to improve overall performance by training the software to avoid scanning files unnecessarily. The interface may become more intuitive, deployment more painless and detection more accurate, but the process itself remains largely unchanged.īut the latest iteration of Symantec Endpoint Protection (v.12) was a pleasant surprise. But for the most part, antivirus software works its magic by comparing what it sees with a static set of definitions, then taking action when it identifies a match. Over the years, I have learned to expect certain things from these applications, and I have not been terribly surprised by most versions that have crossed my desk.Ĭertainly, definitions evolve, and the means of detection improve. Deliver detection and remediation of persistent threats with sophisticated attack analytics and prevention of AD credential theft.I have a confession to make: I’m not usually blown away by the antivirus software I review. Full blown breaches are CISOs' worst nightmare. Innovative attack prevention and attack surface reduction delivers the strongest security across the entire attack life cycle (e.g., stealthy malware, credential theft, fileless, and “living off the land” attacks). Compromised endpoints are highly disruptive to business. A unified cloud-based management system simplifies protecting, detecting and responding to all the advanced threats targeting your endpoints. As an on-premises, hybrid, or cloud-based solution, the single-agent Symantec platform protects all your traditional and mobile endpoint devices, and uses artificial intelligence (AI) to optimize security decisions. Symantec Endpoint Security delivers the most complete, integrated endpoint security platform on the planet.
0 kommentar(er)
