Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.
Security Community Blog

Windows updates and SEP

Finding the hidden dangers
Created: 07 Feb 2014 • 2 comments
The Conquistador's picture
+1 1 Vote
Login to vote

I have come across some instances where servers would have failing services or instances where they would have perticularly unusual behavior. Typically resulting in a restart of the services or the server. Even with the most current version of SEP, malicious/dangerous files can still be hidden. I have had a few cases where I ran complete windows updates and have found malicious files that SEP did not detect. I have come to learn that SEP alone cannot get rid of every threat out there, so I make sure that my systems are up to date and alerts are in place if anything occurs. The approach I will use is to run a complete scan of a suspected machine, clean and make sure it is up to date. I would advise caution depending on what your server is utilized for.

I would continue to make sure that it is current with Windows and SEP updates. If there is an instance that is repetitive there is a pretty large chance that this is an undetced infection.

Comments 2 CommentsJump to latest comment

The Conquistador's picture

I will be exceptionally cautions with Network Attached storage devices since I do not want to compromise user data.

0
Login to vote
The Conquistador's picture

The reason I wrote this blog is becuase before I ran the updates, SEP was not picking up any infections or suspicious files. After I ran the updates, it has found 8 malicious files which I now know what they are and I have the right tools to correct these issues.

0
Login to vote