So the cloud version is pretty interesting. Login is here:
https://cloud.malwarebytes.com/
They have several packages available:
WinXP & Server 2003:
1. 32-bit agent
2. Full agent with required software (.NET framework etc.)
Windows Vista 7, 8, 8.1, 10 and Server 2008, 2011, 2012, 2016:
1. 32-bit agent
2. 64-bit agent
3. Web download agent (agent + auto-download of .NET etc. as necessary)
4. Full agent with required software (.NET framework etc.)
Mac OS X Yosemite 10.10 or higher:
1. Endpoint Agent Installer
Malwarebytes Breach Remediation:
1. A .zip package that includes the unmanaged dissolvable client.
This is basically the emergency fix-it tool, more info here:
https://www.malwarebytes.com/pdf/datasheets/MBBRDatasheet.pdf
Tools:
1. Malwarebytes Discovery and Deployment Tool
The deployment guide is available here:
https://www.malwarebytes.com/pdf/guides/DDQSG.pdf
The deployment guide covers:
- Active Directory (AD) Group Policy
- System Center Configuration Manager (SCCM)
- Third-party deployment tools
- Manually on the endpoints
- Other scenarios that may be unique to your organization
- Once the installation is complete, the endpoints will be displayed in the console.
Consumer & business guides available here:
https://www.malwarebytes.com/support/guides/
Other resource files are available here:
https://www.malwarebytes.com/resources/
So for starters, it's very nice to see Windows XP & Server 2003 support, especially the 32-bit versions, as a lot of small businesses I deal with still have really old machines that they use every day & don't have want to upgrade for whatever reason (budget, hardware/software compatibility, owners being too cheap, owners not caring too much about security, etc.). Also nice to see Mac support, both because OSX is getting more & more virus/spyware threats (mostly annoying adware) & because Mac users can spread Windows threats without realizing it (email, file servers, etc.), so it's nice to have that option available as well.
The cloud panel is pretty straightforward:
For management, you can create groups, schedules, and policies. So you can create say a policy for HR with a daily scan schedule in the Northwest group or whatever you'd like. For asset management, it can report storage devices, memory objects, startup programs, installed software, and software updates. The incident response & endpoint protection sections pretty much mimics the consumer version of Malwarebytes as far as settings go...you can enable scan for rootkits, it has ransomware protection built-in (yay), etc. Exclusions include: file by path, folder by path, wildcards (for both files & folders), file extension, registry key, and website. The full installer for Win7 was under 80 megs, so even that deployment is pretty lightweight (I forget the last A/V I rolled out, but the install file was like a freakin'
gig lol).
Overall, pretty easy & very convenient through the cloud deployment system. I'm a BatchPatch fan, so I can just zap out the EXE through a simple script without having to go through the server. I'll try out the server-based version maybe next week & see how that fares at a larger site, as I have a lot of security renewals to do over the next few months.
Facebook
Twitter