Video Screencast Help
updated article 27 May 2015
# Updated: 27th May'15 Hello Everyone, SEP 12.1 RU6 (12.1.6168.6000) has been released and now available on Flexnet to download. For Non English languages it may take few more days. Note: Symantec Endpoint Protection 12.1 RU6 does not ship Small Business Edition which reached End of Life (EOL) in May'15. Small Business Edition 12.1 customers can use a tool to migrate to the cloud-based ...
new discussion 27 May 2015
Certain firewalls have dynamic block lists that pick up a list of well known malicious domains which can be incorporated into a firewall rule. I know I can populate the DNS Domains into a firewall rule in SEPM manually. The question is whether this can be done dynamically in SEPM in the same fasion as on a firewall described above. Please, point me in the right direction if you know a way.
new discussion 27 May 2015
Certain firewalls have dynamic block lists that pick up a list of well known malicious domains which can be incorporated into a firewall rule. I know I can populate the DNS Domains into a firewall rule in SEPM manually. The question is whether this can be done dynamically in SEPM in the same fasion as on a firewall described above. Please, point me in the right direction if you know a way.
updated article 27 May 2015
# Updated: 27th May'15 Hello Everyone, SEP 12.1 RU6 (12.1.6168.6000) has been released and now available on Flexnet to download. For Non English languages it may take few more days. Note: Symantec Endpoint Protection 12.1 RU6 does not ship Small Business Edition which reached End of Life (EOL) in May'15. Small Business Edition 12.1 customers can use a tool to migrate to the cloud-based ...
new blog entry 26 May 2015
寄稿: Val S シマンテックセキュリティレスポンスは、オープンソースの SSH(Secure Shell)クライアント PuTTY に、情報を盗み出す非公式のバージョンが存在することを確認しました。ソースからコンパイルしてトロイの木馬が仕込まれていたのです。ホストとして利用されているのも、正式な Web サイトではありません。攻撃者は、危殆化した第三者の Web サイトから自分たちのサイトへユーザーをリダイレクトします。 この悪質なバージョンの PuTTY を使ってユーザーが他のコンピュータまたはサーバーに接続すると、何も知らずに重要なログイン情報を攻撃者に送信してしまいます。 正規の PuTTY ...
new blog entry 25 May 2015
寄稿: Lamine Aouad SMS を利用するスパマーが、リンクを YouTube の動画に隠して、URL フィルタを回避しようとしています。シマンテックは、最近の SMS スパム活動でこの傾向を発見しました。送信者は女性を装い、メッセージを受け取ったユーザーにデートを持ちかけます。メッセージに従ったユーザーは YouTube 動画に誘導され、動画に含まれているリンクをクリックして「承認」を受けるよう求められます。といっても、実際のリンク先はアダルト向けの Web サイトで、そのサイトに登録してしまうと、会費と称してクレジットカードに料金が請求されることになります。 SMS を利用するスパマーにとっての課題 大部分のスパマーが利益をあげるために利用している手段は、詐欺行為、フィッシング攻撃、あるいはアフィリエイトプログラムです。アフィリエイトプログラムの場合は、別の会社の ...
new blog entry 25 May 2015
先月、シマンテックは Yahoo! メールのユーザーを標的にするフィッシング攻撃を確認しました。フィッシング用の電子メールでは、受信者のメールボックスが失効していると告げ、電子メール利用を再開するにはリンクをクリックするよう求めてきます。 図 1. Yahoo ユーザーを狙うフィッシングメールの例 「Update Now」リンクをクリックすると、Yahoo.com のログインページと思える Web サイトに移動します。 図 2. Yahoo! メール に偽装したフィッシング用ページ このフィッシング用 Web サイトでユーザー名とパスワードを入力すると、Yahoo! メールのアカウントが侵入を受けます。ここまでは予想されるとおりですが、今回見つかったこのフィッシング攻撃には、いくつか目立った特徴があります。 詐欺師は偽の代替メールを追加 Yahoo! ...
new blog entry 25 May 2015
今月のマイクロソフトパッチリリースブログをお届けします。今月は、46 件の脆弱性を対象として 13 個のセキュリティ情報がリリースされています。このうち 21 件が「緊急」レベルです。 いつものことですが、ベストプラクティスとして以下のセキュリティ対策を講じることを推奨します。 ベンダーのパッチが公開されたら、できるだけ速やかにインストールする。 ソフトウェアはすべて、必要な機能を使える最小限の権限で実行する。 未知の、または疑わしいソースからのファイルは扱わない。 整合性が未知の、または疑わしいサイトには絶対にアクセスしない。 特定のアクセスが必要な場合を除いて、ネットワークの周辺部では重要なシステムへの外部からのアクセスを遮断する。 マイクロソフトの 5 ...
updated blog entry 25 May 2015
シマンテックは、オーストラリアのコンピュータに感染する新しい暗号化ランサムウェア(Trojan.Cryptolocker.S)を確認しました。このマルウェアは、侵入先のコンピュータ上で画像、動画、文書その他を暗号化し、ファイルの解読に対して最大 1,000 豪ドルを要求します。解析の結果、この攻撃に使われているテーマは人気のテレビドラマシリーズ『ブレイキング・バッド』にちなんだものであることが判明しました。 Trojan.Cryptolocker.S の作成者は、このドラマに登場する架空のフライドチキンチェーン「ロス・ポジョス・エルマノス」のブランドロゴを使って身代金要求のメッセージを作成しました。また、脅迫文で使われているメールアドレスの一部にも、このドラマの主人公ウォルター・ホワイトが口にする有名なセリフ、「I am the one who ...
new blog entry 25 May 2015
クラウドストレージのコンテナで、11,000 を超えるファイルが簡単にアクセスできる状態であることがわかりました。なかにはメールアドレスやパスワード、クレジットカードのトランザクションログといった重要データも含まれています。これは、IaaS 環境を取り巻くリスクについてシマンテックが実施した研究により判明したもので、:単純な設定エラーのためにクラウドのアカウントから個人の情報が漏えいしていました。 この研究の一環として、シマンテックはある攻撃シナリオを紹介し、アマチュアの攻撃者でさえ、ユーザー名とパスワードを必要とせずに、クラウドに保存されている何千ものファイルにアクセスできるということを実証しました。シマンテックの調査によると、攻撃者はユーザーのクラウドアカウントに使われている 16,000 件の有効なドメイン接頭辞を検出し、1 ...
updated download 08 Jan 2015
To build on my last IR article: How to utilize SEP 12.1 for Incident Response - PART 6 I'm attaching a custom IPS policy which will detect the download of various filetypes via HTTP and HTTPS. The signatures are in Allow mode and set to write to the Packet log for detailed information. As of now, this policy will detect 37 different filetypes. I will update it as I add more. Feel free to use ...
download comment 05 Dec 2014
updated event 26 May 2015
Join us for our next Cleveland Security & Compliance User Group meeting on Thursday, June 11, 2015 We have excellent presentations lined up! INFOSEC Flash Forward - Changing how we think Presented by: David Kennedy, QSA, OSCE, OSCP, CISSP, ISO 27001, GSEC, MCSE Founder, Senior Principal Security Consultant TRUSTEDSEC, LLC Advanced Threat Protections Presented by: Walt Abel, Principal ...
updated event 13 Apr 2015
NetX a Symantec Authorized Training Partner (ATP) delivers Instructor-led Training Classes either on-site or remotely.  We offer over 20 different Symantec Classes, for a complete list please visit netxinc.com/training Attend from your home, office or one of our convenient locations.   Our training classes are Guaranteed to Run, We Never Cancel!  Symantec Data Loss ...
updated event 09 Apr 2015
Please note: This meeting has been rescheduled to a week later on Friday, April 17th! Due to an illness, Mike will be unable to attend and present tomorrow. We apologize for the short notice and any inconvenience this may have caused. We hope to see you there next week! Please join us for the next Twin Cities Data Loss Prevention User Group meeting on Friday, April 17th from 11:00am to 3:00pm ...
new event 10 Mar 2015
Presented by: Pete Lindstrom, Director, Security Products, IDC Research Nico Popp, Vice President Information Protection, Symantec   Webcast Summary: The cloud has changed the way we do business and is forcing us to rethink security in new ways. The fact that information flows freely outside of the enterprise walls and back again means we need to consider how we secure that information ...
updated event 09 Mar 2015
Please join us for the next Philadelphia Security & Compliance User Group meeting on Wednesday March 11th from 9:00am to 12:00pm at Dave & Buster's. The meeting will feature presentations on SEP and DLP from Symantec. Lunch will be served! Agenda: Welcome, Announcements & Introductions Roadmap of Security Solutions by Neil Christie, Symantec SEP DLP Planning, Prizes and ...
new event 03 Mar 2015
The Symantec Control Compliance Suite (CCS) 11.0 Administration course is designed for professionals who are tasked with ensuring the security of their computing enterprise and compliance with both external and internal mandates. This instructor-led course focuses on using Control Compliance Suite 11.0 to define risk and compliance objectives, develop policies and controls to govern the ...
updated video 26 May 2015
This training module aims to walk you through how to setup a new business partner in the Encryption module of the Management Portal. Watch more Videos in the Self-serve TLS video series: Self-serve TLS: Moving domains from one Business Partner to another Self-serve TLS: Getting visibility into your enforcements Self-serve TLS: Enforcing TLS encryption between you and the Email Security ...
updated video 15 May 2015
In this video you will be walked through the on-screen administration of Self-serve TLS, paying particular attention to configuring enforcements between your own domains and Symantec.cloud. The video will then show you how to test the domain to ensure that all is working as expected.
updated video 15 May 2015
This training module aims to walk you through configuring your services to ensure that all emails sent between you and the Email Security Service pass through an encrypted TLS channel.
updated video 15 May 2015
This training module will demonstrate how you can review your Encryption settings and highlight some key information points. 
updated video 15 May 2015
This training module aims to walk you through how to move a domain from under the remit of one business partner to the remit of another.
new video 04 May 2015
How to submit suspicious files with Threat Analysis Threat Analysis를 통해 탐지된 의심스러운 파일을 어떻게 판단하여 Symantec Security Response Team에 업로드 하는지 알아봅니다. 준비사항: 1. Threat Analysis by Symhelp tool 2. Threat Analysis Report Symhelp Download: http://www.symantec.com/business/support/index?page=content&id=TECH170752 Threat Analysis 사용 방법은 아래의 URL을 참고하시기 ...
updated video 29 Apr 2015
In this short video, you learn how to troubleshoot a client that is unable to communicate with the SEPM by reviewing settings and running SymHelp. You also learn how to deploy new communication settings to the client. Please watch the other videos in this series: Troubleshooting Console Issues Troubleshooting LiveUpdate Configuration Issues Troubleshooting LiveUpdate Connection ...
updated video 29 Apr 2015
In this short video, you learn how to troubleshoot and resolve a replication issue by examining Tomcat logs and other areas of the SEPM. Please watch the other videos in this series: Troubleshooting Console Issues Troubleshooting LiveUpdate Configuration Issues Troubleshooting LiveUpdate Connection Issues Troubleshooting Client Communication Issues Troubleshooting Group Update ...
updated video 29 Apr 2015
In this short video, you learn how to configure a client as a GUP. You also learn how to configure clients to retreive LiveUpdate content from a GUP. In addition you learn how to ensure tha clients are retrieving content from a GUP. Please watch the other videos in this series: Troubleshooting Console Issues Troubleshooting LiveUpdate Configuration Issues Troubleshooting LiveUpdate Connection ...
new idea 27 May 2015
Hello, I would like you to consider implementing the below options in SEPM versions after 12.1 RU6 (in some MP or new release).. We have upgraded SEPM to version 12.1 RU6 and now we have the option to receive automatic e-mails for Full zip downloads. I want to have an option to configure such notifications to be sent if size of full zip is more that let's say 50-100 MB so we can get ...
new idea 22 May 2015
Whenever I install SEP.cloud on a new computer, I wait a few mintues and then click the Update Definitions link. Invariably, I see the following screen: First, I do not understand why, if I am actually running SEP and it says that it is connected, does this screen say "Failed to initialize Endpoint Protection." Second, I cannot understand why the instruction is to "Click OK to exit" when ...
new idea 22 May 2015
There are no out of the box patterns available for any Indian identities. It is desirable to have out of the box patterns for the following- Indian Passport Number Permenent Account Number (PAN) Card Statewise Driving License Numbers Voter ID Number Universal ID (Aadhar) Card Number Further UID uses Verhoeff's error detection for checksum and it will be good to have that as an out of box ...
new idea 22 May 2015
While we can OR keywords, we are not able to OR DIs. It is desirable to have OR condition beween multipe DI. This would allow us to have consolidated policies instead of having multiple policies. Such policies are typicaly required to protect customer data in telco and SFI industries. An example case can be as follows: - Customer Number DI AND Customer Phone Number Pattern AND (Customer ...
new idea 22 May 2015
Call Data Rate are logs generated by telecom equipment to log mobile phone service usage. These logs include details like phone numbers, IMEI, IMSI, Called Party Number, Tower location, IP assigned (if data traffic), Destination IP (if data traffic) etc. This information is originally in binary format but mediation softwares converts it into human readable format which is then used primarily ...
Member Name
Reward Points
All Time
Member Name
Reward Points
Last 30 Days
Member Name
ArticlesSolved
AravindKM
293
1
Brɨan
1859
19
Mithun Sanghavi
1244
59
SMLatCST
387
1
jjesse
59
24

A Message From Your Community Manager: Swathi Turlapaty

Welcome to the Security Community on Symantec Connect.

The Security Community covers many different security products from Symantec and provides valuable technical information for each.

Please feel free to contact me via private message with any questions you may have.

I look forward to hearing from you and answering any questions about the Community.

Login to contact the Community Manager.