If your coffee filter had holes the size of Luxembourg, and also a side access door with a combination lock with password "1234"... sure. You don't need AV, it doesn't work and makes new problems.
-
-
Instead of trying to keep a list of all the bad programs ever written, whitelisting keeps track of good programs instead. Think of it like having a list of authorized users who can access your bank account (whitelisting), instead of a list of known fraudsters who cant (antivirus)
-
This is twitter, so I'm simplifying, obviously. You might ask, ok antivirus doesn't work, but it doesn't do any *harm* right? Actually, it adds significant new attack surface that vendors refuse to mitigate, among other serious problems.
End of conversation
New conversation -
-
-
I've worked the trenches for a long time, so accept all you have put here. I'll add in a bit and if interest we can chew cud, if not - no problem.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
In principle, whitelisting and AV, even with heuristics, and AI, are efforts to stop guessable, or known execution. And applications, in this case AV leave an attack surface, that creates an additional risk element. So..
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
In addition to standard fair or remove admin rights, and endpoint control, its not clear to me if we were to rip out AV, that doing so helps. It does reduce the attack surface, agreed. But its an inelegant outcome, still riddled with risk..
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Lets say we agree to reduce footprint. What would you do -AV to protect the current lousy endpoint situation?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.