Video Screencast Help
updated discussion 05 May 2016
SymDiag - (latest version) Error: "symdiag failed to schedule scan after restart" When using SymDiag to do a scan including rootkit scan, it reboots, but fails to run. If I try to start over, it will generate the error above. Didn't find a fix on google, I'm thinking it may be a reg value on win7. Any suggestions?
discussion comment 05 May 2016
_Shk. commented on: SEP points
updated event 05 May 2016
Please join us for the next Pittsburgh Security User Group meeting on May 25th from 2pm to 5pm at the Reed Smith Centre -- 225 Fifth Avenue, Pittsburgh. Lunch will be served! Agenda 2:00 – 5:00 pm Welcome & Introductions Customer Presentation: PNC Bank - DLP Program – Chris Benz, VP Data Protection Symantec Presentation and Panel Discussion: CASB - Adam ...
new discussion 05 May 2016
We have a Exchange 2007 sp1 on a windows 2003 server with Symantec Mail Security for Exchange version 7.0 Is it possible to install and enable the builtin feature exchange Antispam agents beside SMSE ? The reasons for this is to block spoofing email and block ip or is there any other solutions Hope someone would be kind to answer because we have a large problem Peter Røge / ITTEKNIK / ...
updated discussion 05 May 2016
This is the second time in the past two months that valid iCloud.com emails have been deleted with a verdict of "Symantec Global Bad Sender". Furthermore, adding the email to the Local Good Senders List does not allow the emails through.  They still get Deleted. Is there a resolution to this issue?
updated video 05 May 2016
This demonstration steps through configuring L7 filters and applying them to a policy.
new video 05 May 2016
This module reviews Symantec Data Loss Prevention Mobile Email Monitor features and Network Monitor features.
new video 05 May 2016
This demonstration steps through the creation of a VML profile and using it in a VML policy.
updated discussion 05 May 2016
SymDiag - (latest version) Error: "symdiag failed to schedule scan after restart" When using SymDiag to do a scan including rootkit scan, it reboots, but fails to run. If I try to start over, it will generate the error above. Didn't find a fix on google, I'm thinking it may be a reg value on win7. Any suggestions?
discussion comment 05 May 2016
_Shk. commented on: SEP points
new discussion 05 May 2016
We have a Exchange 2007 sp1 on a windows 2003 server with Symantec Mail Security for Exchange version 7.0 Is it possible to install and enable the builtin feature exchange Antispam agents beside SMSE ? The reasons for this is to block spoofing email and block ip or is there any other solutions Hope someone would be kind to answer because we have a large problem Peter Røge / ITTEKNIK / ...
updated discussion 05 May 2016
This is the second time in the past two months that valid iCloud.com emails have been deleted with a verdict of "Symantec Global Bad Sender". Furthermore, adding the email to the Local Good Senders List does not allow the emails through.  They still get Deleted. Is there a resolution to this issue?
new discussion 05 May 2016
Hi, I am trying to install SEP 12.1.6 on Ubuntu machine, 14.04 and 15.10. I understand that install.sh that exist in Symantec AV zip file will not auto-compile AP module for the kernels running in my Ubuntu (4.2.0-27-generic and 4.2.0-35-generic for 15.10). Therefore I tried to manually compile the modules following the information Symantec support gave me and also ...
updated discussion 05 May 2016
I am currently working on a DLP solution (Endpoint Prevent)  for my company. However, Is there any workaround for this issue? My concern is users using gmail to upload confidential documents via HTTPS and Symantec DLP is unable to capture that event.
updated article 02 May 2016
  Symantec DLP v14.0  upgrade Document   Symantec Data Loss Prevention Upgrade Phases Phase Action Description Phase 1 Upgrade Database to Oracle 11g (11.2.0.4). Upgrade your database to ensure continued security fixes. Phase 2 Prepare the system for upgrading. This Preparation includes backing up the Oracle database and detection server ...
new article 28 Apr 2016
At times it may become necessary to troubleshoot Symantec Endpoint Encryption Device Control. The attached comprehensive pdf will allow an end user and administrator alike, to test communication thoroughly. If further assistance is required please contact Symantec support.
article comment 22 Apr 2016
updated blog entry 04 May 2016
{Editor's note: This previously published post has be updated} UPDATE: Watch the recorded webcast here.  Join our upcoming “Key Findings From Symantec’s 2016 Internet Security Threat Report” webcast to tap into valuable insights from the newly released ISTR. The 2016 Internet Security Threat Report (ISTR) provides an overview and analysis of the year in global threat activity. Find ...
updated blog entry 04 May 2016
Oscar Wilde said, “With age comes wisdom, but sometimes age comes alone.” Symantec just released the 2016 Internet Security Threat Report (ISTR), our annual look at the rapidly evolving threat landscape. And it never comes alone. The ISTR comes with the wisdom Symantec’s Global Intelligence Network, but also from the fact that Symantec has been tracking attack and threat trends for so ...
new blog entry 04 May 2016
Android’s recent API modifications have hampered some malware’s ability to determine which application is currently running in the foreground of a device at any given point of time. As Android begins to successfully block this attack method, attackers may adopt a trick used by adware so that their threats can work again. Though we have previously seen mobile potentially unwanted applications ...
updated blog entry 02 May 2016
投稿人: Gavin O’Gorman 网络间谍团队使用自行开发的定制恶意软件(Backdoor.Daserf)长时间将目标瞄准日本各种机构。据赛门铁克所知,这个名为蒂克的团队行事低调,其暗中进行网络间谍活动的历史至少有十年之久。 在最近的间谍活动中,为了使大量新受害者受病毒感染,蒂克团队使用了鱼叉式钓鱼电子邮件并入侵了大量日本网站。该团队作案手法极其精密,而且似乎只有在确定某机构为预定目标时才会使用所有工具攻击。蒂克团队还使用大量黑客工具确定受害者网络的位置,从而获取更高权限。 Daserf的主要用途是信息窃取。这种木马能够收集受感染电脑的信息,之后将这些信息传回网络攻击者控制的服务器。蒂克团队最近的攻击对象主要是日本科技部门、水生工程部门和广播部门。 最近的攻击 赛门铁克发现蒂克团队于2015年6月份进行了新一波攻击,该团队利用Flash ...
new blog entry 01 May 2016
寄稿: Gavin O’Gorman 長期にわたって活動を続けているサイバースパイグループが、カスタム開発した独自のマルウェア(Backdoor.Daserf)を利用して、主に日本の企業を狙い始めました。このサイバースパイグループ(シマンテックは「Tick」と呼んでいます)は、目立たずに存在し続け、発見される前に少なくとも 10 年間は活動を続けていたようです。 ごく最近では、Tick はスピア型フィッシングメールを利用して、複数の日本企業の Web サイトに侵入し、新たな被害者を生み出しました。Tick の攻撃はきわめて限定的であり、侵入先の企業が意図した標的だったと確定して初めて、あらゆるツールを動員するようです。Tick グループはさまざまなハッキングツールを使って、被害者のネットワークマップも特定し、さらに権限の昇格を狙います。 トロイの木馬 Daserf ...
updated blog entry 29 Apr 2016
Contributor: Gavin O’Gorman A longstanding cyberespionage campaign has been targeting mainly Japanese organizations with its own custom-developed malware (Backdoor.Daserf). The group, known to Symantec as Tick, has maintained a low profile, appearing to be active for at least 10 years prior to discovery. In its most recent campaign, Tick employed spear-phishing emails and ...
updated blog entry 28 Apr 2016
When we talk about innovation in the enterprise, it is often associated with R&D teams. And while innovation is a necessity for R&D, I believe all teams need to look for new ways to develop and improve stellar customer experiences. In fact, everyone at every level of an organization can and should innovate. Everyone can make things better. I’d like to share my thoughts on how to innovate ...
updated download 22 Apr 2016
Symantec DCS Policy Utility v1.0.0.11 For Windows OS (Note .NET Framework 4.5 is required) Designed to help you tune your policy by processing the log files from an Agent. There's a getting started tab that explains the best steps to get the logs and events you need to troubleshoot your policy. The program does not make any changes to the machine or policy. It parses the sisidsevents and ...
updated download 01 Apr 2016
When a customer is using the forensics software "Encase 7" with our Symantec Endpoint Encryption Full Disk 8.2.0 software, the customer will need the appropriate DLLs so that the Encase product can successfully work with our Full Disk product. The DLLs required are attached here and can also be located within the original product download under the subfolder "utilities". The DLLs required in ...
updated download 01 Apr 2016
At times, a customer may require the details for creating a batch file (startup script) to assist in the uninstallation of a Symantec Endpoint Encryption Device Control client that was installed via GPO. You cannot use the automatic uninstall feature in the GPO software installation package because the Device Control uninstall procedure is password protected. To uninstall Device Control you ...
new download 01 Mar 2016
Symantec Data Loss Prevention- Triggering Endpoint Response Rules Video
new download 01 Mar 2016
Oracle 11g Symantec DLP Installation
updated download 16 Feb 2016
This script is intended for use in Symantec Data Loss Prevention and provide an ability to sort incidents not only by file name but also by separate subfolders in it's path. You need to create following Custom Attributes: FPath_Drive_Letter FPath_Root_Folder FPath_SubFolder_1 FPath_SubFolder_2 FPath_SubFolder_3 FPath_SubFolder_4 ''' Created on 8 feb 2016 @author: Stepanov Alexander ...
updated event 05 May 2016
Please join us for the next Pittsburgh Security User Group meeting on May 25th from 2pm to 5pm at the Reed Smith Centre -- 225 Fifth Avenue, Pittsburgh. Lunch will be served! Agenda 2:00 – 5:00 pm Welcome & Introductions Customer Presentation: PNC Bank - DLP Program – Chris Benz, VP Data Protection Symantec Presentation and Panel Discussion: CASB - Adam ...
updated event 03 May 2016
REGISTER TODAY New York Cyber Security Forum has been created based on the complexity of today’s global threat environment. As IT no longer rules the roost, device and data explosion coupled by being ever targeted by data breaches and battered attacks continue to make cyber security grow. This all revolves around the balance between privacy, anonymity, technology and ...
updated event 03 May 2016
REGISTER TODAY New York Cyber Security Forum has been created based on the complexity of today’s global threat environment. As IT no longer rules the roost, device and data explosion coupled by being ever targeted by data breaches and battered attacks continue to make cyber security grow. This all revolves around the balance between privacy, anonymity, technology and ...
updated event 02 May 2016
Please join us for the next South Florida Security User Group meeting on Wednesday, June 22 from 11:30 am to 2:00 pm at Bokamper's in Miramar. Lunch will be served! Agenda  Welcome – Raul Documet Presentation – Gary Bishop: ATP / DLP Lunch & Networking Presentation – Javier Sola – ATP / DLP Customer Roundtable Conclusion, Prize Drawings & Feedback
new event 21 Apr 2016
Friday, April 22 at 11 am EST Join Navin Deen, Privacy Architect with ITS Partners on this webcast, to review the various Symantec DLP modules and address key considerations for design and sizing the DLP system in your environment.  Learn more about core detection technologies and implementation best practices derived from years of experience. Designing and Architecting ...
updated event 20 Apr 2016
Presenter(s): Jeff Barto – Symantec Trust Strategist Date/Time: May 25 2016 2:00 pm Australia - Sydne                 Every year Symantec releases its Website Security and Threat Report (WSTR). A report based on data Symantec collects, compiles, and analyzes for you. Data that is gathered from over 57.6 million attack sensors in 157 countries. This ...
updated event 13 Apr 2016
Every year Symantec releases their Internet Security and Threat Report (ISTR). A report based on data Symantec collects, compiles, and analyzes for you. Data that is gathered from over 63.8 million attack sensors in 157 countries. This years report spanned 81 pages with extra supplemental data for your reading enjoyment. No matter if you're in financial, healthcare, retail, or even ...
updated video 05 May 2016
This demonstration steps through configuring L7 filters and applying them to a policy.
new video 05 May 2016
This module reviews Symantec Data Loss Prevention Mobile Email Monitor features and Network Monitor features.
new video 05 May 2016
This demonstration steps through the creation of a VML profile and using it in a VML policy.
updated video 05 May 2016
This module covers the VML detection method, its use cases, and how to use it in policies.
updated video 05 May 2016
This demonstration steps through creating an IDM index for Data Loss Prevention
updated video 05 May 2016
This module covers the IDM detection method, which you can use to define confidential data in your policies and then to detect that data in your enterprise.
updated video 05 May 2016
This demonstration steps through the creation of a DCM policy using Data Identifiers
updated video 05 May 2016
This module covers the DCM detection method, which you can use to define confidential data in your policies and then to detect that data in your enterprise
new video 04 May 2016
This demonstration steps through the creation of Automated Response rules and how to add automated response rules to a policy.
updated video 04 May 2016
This module presents the details of Response Rule Management as it applies to Symantec Data Loss Prevention
updated idea 05 May 2016
It would be nice to add a column to one of the views that lists the active Location-Specific policy for each client. This will help with troubleshooting policies and testing new policies.
updated idea 05 May 2016
En la empresa a que pertenezco, diponemos de un par de servidores de Discover que realizan mayormente tareas de descubrimiento en nas. Estos servidores están basados en Linux y, debido a esto y a que no deseamos cargar en exceso el trabajo de las nas, las tareas de descubrimiento no se realizan en paralelo sino que cada servidor ejecuta de forma secuencial las que tiene encomendadas. La ...
new idea 04 May 2016
Using 12.1.6 RU6 MP4 Build 6867 (and all previous builds as well), when you create two or more Location-Specific policies for a group, if you change one location's communication settings (say, un-tick Download Randomization), it propagates across all location-specific policies within that group. As a real-world example: We have meeting room PCs, our default workstation setting is to ...
new idea 04 May 2016
Prezados, Solicito avaliação de controles de dupla validação antes que alterações em políticas sejam efetivamente aplicadas no SEP, seja mediante uma segunda senha ou fluxo de aprovação em virtude dos riscos de disponibilidade associados a falhas operacionais/humanas. Obrigado, Marcello
new idea 03 May 2016
We receive Cyber Threat Bulletins containing IOC lists, possibly containing many hundreds of file hashes.  It is an arduous task to vet these using VirustTotal, to see if Symantec currently addresses the hash in question, and then submitting them to Symantec - Upload a suspected infected file site, one at a time. It would be helpful to allow bulk hash uploads ...
new idea 02 May 2016
We recently migrated from SEP SMB on-prem to the cloud version and have noticed that the ability to monitor a scan that has been started from the portal is no longer available. Once a scan has been started from the Hosted Endpoint Portal the only control for that scan is on the workstation. With SEPM, an administrator could monitor and even cancel and scan that had been started.I would really ...
new idea 02 May 2016
The Set User Information Collection dialog box says "You can collect information from the user when a package is installed." yet if you turn this collect user information on, it actually gets deployed to the entire organization NOT just when a package is installed.  This is misleading.  Remove the when a package is installed" from the dialog box.
updated idea 29 Apr 2016
Entendemos que es una mejora necesaria que se pudies visualizar los eventos generados por agentes con una politica de protección en modo learning que serán bloqueados (denied) cuando la política se active a modo protección. Facilitaria la tareas de los administrtadores muchísimo. Gracias
updated idea 29 Apr 2016
Solicito se estudie la viabilidad de hacer cambios para que se pueda modificar la ruta donde los agentes almacenan los logs, desde la consola de gestión. Saludos Gracias