We keep having new infections of this virus all, and our corporate anti-virus never seems to stop it. We are running Symantec Corporate edition 10, and the original Vundo is over 4 years old. Is there any way to stop this from infecting machines instead of formatting them after they are infected?
Blocking vundo, instead of reacting
- Thread starter daishi5
- Start date
mechBgon
Super Moderator<br>Elite Member
- Oct 31, 1999
- 30,699
- 1
- 0
If at all possible, switch your users to low-rights user accounts, instead of Administrator or Power User accounts. And if you do that, you might as well look at Software Restriction Policy to go with it.
Strange coincidence, I am working on SRPs for another set of workstations right now. That may be a long term solution to look at.
We have SEP11 and it's catching Vundo fine... SEP seems to be fast and efficient so far as well as a breeze to admin since we have it tied into our Symantec Management Platform. Both the virus signature and the vulnerability blocking will catch vundo.
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes Discussion Threads
- Started by Tigerick
- Replies: 21K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
-
Facebook
Twitter