Ones I have personal experience with at customer sites: Cylance Bromium (headed by former CTO of Citrix) Citrix XenServer with BitDefender Hypervisor Introspection (HVI)
Thanks Carl Webster Citrix Technology Professional http://www.CarlWebster.com<http://t.sidekickopen01.com/e1t/c/5/f18dQhb0S7lC8dDMPbW2n0x6l2B9nMJN7t5XYgdV8QRW2zWLDn4XrdjzW7fK3rs56dwxZf67wwsR02?t=http%3A%2F%2Fwww.carlwebster.com%2F&si=6012126861197312&pi=4311b7b1-332d-4242-8585-36954b184dc7> The Accidental Citrix Admin From: [email protected] [mailto:[email protected]] On Behalf Of Tom Miller Sent: Monday, June 12, 2017 7:35 AM To: [email protected] Subject: [NTSysADM] Ransonware protection Hi All, What would you recommend as specific software solutions to protect against Ransomware? In my company we use: - Sonicwall firewalls, and the gateway security component is enabled and is supposed to help block/prevent. - Symantec AV. Not specific to ransom-ware but appears to be reactive. I'm looking at additional layers of security, such as the Barracuda e-mail filter. I used that at past jobs and that reduced the "infected" e-mails considerably. I also have used Malwarebytes enterprise. That has an anti-ransomeware component. I used that in a past job and was not impressed. Malwarebytes sold is an an "enterprise" solution, but it was a stand alone product, had not integration with the management console, no configuration and no notifications. It appeared to be a rush to market. Sophos supposedly has a similar solution specific to Malwarebytes but I have not looked at it yet. Internally, we also have targeted employee training and use a service to send "fake" messages from Amazon/UPS, etc to let them know that they need to be vigilant when reviewing messages from outside the company. Thoughts appreciated.
