We can't even count anymore on how many times we have had customers install programs without disabling their threatmanagement software first.
Malware programs are meant to protect system files from being overwritten, that is their job so when you load a software program you are overwriting system files.
The difference with Malware Programs today is that they are running in a sandbox and prevents software from loading correctly which leaves you with a corrupted program/Operating System.
Whenever we do Windows updates we disable our threatmanagement software first to prevent corruption and or answering malware questions like, is this ok, is this ok, is this ok...to load...
We disable our Windows Updates because we don't want them loading without our permission so that is why we remember to disable our threatmanagement software first.
However, this has gone on long enough and Malware providers need to be able to disable themselves while the install is being ran.
All it would do is have a pop up that says, "Are you loading a Software Program" Yes or No', the user would say YES and the Malware programs would disable themselves automatically.
Windows 7 is recommended to be restarted every time you install a program, regardless if the software says to or not, when the system is restarted the Malware program will automatically start.
Now legitimate programs use Windows Installer which make it easier for Malware programs to pick up on whether or not you are loading software or not, but Malicious software doesn't.
Somehow the Malware software needs to be able to pick up on whether or not a malicious software is being loaded and prompt the user "Are you loading a Software Program" and this time the user would say no and the install would be prevented.
Recently we had a user install a software from a Phishing scam that loaded a driver update software into their computer without their knowledge.
It was just a button on the "GOOGLE CHROME" hint hint screen and it installed junk on their computer, and the malware program let it load.
When the system restarted is when they noticed the program popping up saying you have drivers to be updated click here to update automatically and it wouldn't close.
The Malware software prevented it from getting into the system files and quarantined the nasty part of the malicious software, so the clean up was easy, but time consuming.
The malware program should have prevented this all together by prompting the user that an install was happening did you allow this, but Malware software doesn't.
This is in need of improvement to prevent corruption from a user loading a software while Malware is enabled, and prevention of junkware loading to begin with.
In the meantime the first update is the Legitimate User Software load prompt and should be a part of the Malware Software.
The reason being is because there is too many Malware programs for an OS to associate with, so since a Legitimate install uses standard protocols the Malware Program should initiate the Prompt.
This is an age old program and should have been fixed already, but due to the "Whisper Down The Lane" clause, the information wasn't passed on to the new boot campers and the veteran techs got fired before they could change it.
The Vicious circle of Corporate Politics and failed Policies which leave the customer in harms way...and that's a fact!
No comments:
Post a Comment