Kaspersky Anti-Ransomware Tool for Business (Beta)

Discussion in 'other anti-malware software' started by 3x0gR13N, Aug 10, 2016.

  1. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    https://go.kaspersky.com/Anti-ransomware-tool.html

    General information and key features https://forum.kaspersky.com/index.php?showtopic=355273
    KEY FEATURES

    • Freeware and lightweight solution
    • Ransomware detection close to premium business product (KES for Windows)
    • Protection technologies: File AV (KSN based) + System watcher
    • Compatible with 3rd party Endpoint security solutions
    • Most popular client OS support: Win 7-10 (Including Anniversary Update)
    • Email reports on detection to Administrator

    LIMITATIONS

    • No central management (remote silent install, configuration)
    • No technical support (forum support for public beta will be available)
    • Localizations: English only

    Screens:
    Capture.PNG Capture2.PNG Capture3.PNG Capture4.PNG

    Basically, this free tool contains System Watcher (behavior blocking) and Kaspersky security network.
     
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    Looks interesting, but why is this not for consumers? And I also wonder how heavily it relies on the cloud. Also, I really freaking hate the spoiler feature!
     
  3. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    They just market it that way. I guess businesses getting more attention than before from ransomware creators lead them to market it to businesses first.

    But there's nothing preventing a regular user from installing it.
     
  4. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,063
    Location:
    Netherlands
    Okay by using Chrome, I sold my soul to Google, by upgrading from Windows 7 to Windows 10 for free I sold my soul to Microsoft telemetry. Reading the EULA of Kapersky, by using their free tool I have sold my soul to Kapersky also. But what the heck this is my desktop which I use for business, so who cares?

    On the plus side, it delays the start up of Chrome with only 1/4 of a second, just a little more than MBAE, same as HPMA and a bit less than EMET.

    It monitors Cryptographic API, network, remote and system events. When I recall correctly Kapersky were the first to introduce the term riskware (regular services and features which can be misused by malware), so this might be a nice freebie (see how this holds when @cruelsister throws some nasties at it).

    Thx @3x0gR13N nice find :thumb:
     
    Last edited: Aug 11, 2016
  5. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    I know how you feel, but I do care. I just don't really trust the big AV companies anymore, who knows what type of data is being transferred from your PC to "the cloud".
     
  6. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,015
    Google, Microsoft, and Kaspersky. I guess, you need more souls to sell...:D
     
  7. haakon

    haakon Registered Member

    Joined:
    May 25, 2015
    Posts:
    751
    Location:
    SW USA
    Another of Martin's typically useful write-ups...

    http://www.ghacks.net/2016/08/12/kaspersky-anti-ransomware-tool-for-business/
     
  8. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    OK, so seems it's purely signature based detection?
     
  9. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    No, it's a combination of local behavioral rules + cloud signatures.
     
  10. lordraiden

    lordraiden Registered Member

    Joined:
    Jan 30, 2006
    Posts:
    3,067
    so it's free for personal use?
     
  11. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    1,166
    so after the beta we won't have to give all our personal info to download and use for free?

    cool another program for cruel sister to test.
     
  12. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    1,166
    says it doesn't interfere with other security software. I don't believe that for one second. especially if you run the programs I do .
    suppose you could always use a firewall and block access to their web sites. but then they don't offer emanual updates to their sigs.
     
  13. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    1,166
  14. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    Yup.
    The tool requires connection to the cloud for best protection. Since many ransomware also require access to their C&C servers for the encryption key I guess it's understandable.
    Yes.
     
  15. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    1,166
    it is just another program that won't install inside quietzone and so I have to pass.
     
  16. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,063
    Location:
    Netherlands
    Seems to co-exist with Windows Defender nicely on W10AU, had one news item pop-up pushed through the GUI program (which was related to a ransomware article), since (3) days of using it.
     
    Last edited: Aug 15, 2016
  17. Iangh

    Iangh Registered Member

    Joined:
    Jul 13, 2005
    Posts:
    611
    Location:
    Melbourne, Australia
    It looks like it is only a year's licence in the Ts&Cs. What happens next year? Have to pay?
     
  18. 3x0gR13N

    3x0gR13N Registered Member

    Joined:
    May 1, 2008
    Posts:
    754
    Where does it say that exactly, I can't find it?
    It should "autorenew" when the year is up, like free Antiviruses do.
     
  19. Iangh

    Iangh Registered Member

    Joined:
    Jul 13, 2005
    Posts:
    611
    Location:
    Melbourne, Australia
    It was there when I installed yesterday. For the first time ever I scrolled down during the installation instead of blithely checking the agreement box.
     
  20. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,015
  21. Iangh

    Iangh Registered Member

    Joined:
    Jul 13, 2005
    Posts:
    611
    Location:
    Melbourne, Australia
    In case you uninstall, don't worry: it stops and waits for a while, so time to make a cup of tea.

    I have just re-installed and am seeing my expected 100Mbps on Speedtest (it's morning here and the kids are at school) so no impact on speed.
     
  22. Hiltihome

    Hiltihome Registered Member

    Joined:
    Jul 5, 2013
    Posts:
    550
    Location:
    Baden Germany
    If this soft works well, it will make a hard time for other (small and big) vendors.

    I haven't tested it yet, but I guess this will be a must have.
     
  23. NWOAbschaum

    NWOAbschaum Registered Member

    Joined:
    Feb 9, 2014
    Posts:
    185
    Location:
    Germany
    there is a test postet on mt. it does realy well. seems like it is going to be a keeper.
     
  24. Ibrad

    Ibrad Registered Member

    Joined:
    Dec 8, 2009
    Posts:
    1,949
    I am really interested in seeing how this product progresses. I work heavily in the IT departments of local churches and nonprofits and if this remains free for them it would be a great tool for those with small IT departments.

    I am also very interested to see if as it progresses if it keeps comparability with other security products.
     
  25. Iangh

    Iangh Registered Member

    Joined:
    Jul 13, 2005
    Posts:
    611
    Location:
    Melbourne, Australia
    In the test on MT tracing is checked (default is unchecked). Is this needed for rollback? If not, who needs/uses it? Does a home user need it checked?
     
Loading...