Video Screencast Help
Search Video Help Close Back
to help

Security Community Blog

Showing posts in English
Featured: LiveUpdate Administrator (LUA) version 2.3.2 is now available
Mithun Sanghavi | 01 Nov 2012 | 3 comments

 

The Latest version of LiveUpdate Administrator (LUA) version 2.3.2 is now available.

Contact Symantec Technical Support to grab the Latest Copy of LiveUpdate Administrator (LUA) version 2.3.2

The installation file (147.35 MB) and will later be included on the SEP 12.1 RU2 DVD’s (SEP 12.1 RU2 is yet to be released)

Some of the features included in this release

  • Packaged with Apache Tomcat version 7.0.26 and PostgreSQL version 9.1.3.
  • Packaged with JRE 1.7 (private JRE, automatically bundled, installed and configured by the LUA installer).
  • Enhanced security with advanced features to protect the User Interface from certain attacks.
  • Added the ability to modify the LUA download directory path at any time (not just at install time).
  • Product Catalog will now automatically update to ensure catalog changes become available without any user...
Read more
Featured: New Trojan.Shylock wave
Brandon Noble | 28 Aug 2012 | 0 comments

We have been seeing a recent wave of Trojan.Shylock variants with a lot of additional functionality than the older versions we have been used to.

Initially, many of these variants are detected generically as Backdoor.Trojan or Trojan Horse, but our new Shylock heuristic signatures (Trojan.Shylock!gen6 and Trojan.Shylock!gen7) should be changing this to a more accurate naming convention, and should be picking up a much wider spread of these threats.

Additionally we are hearing about some behavior that we have not been able to reproduce. Reports are saying that legitimate documents are getting hidden and then shortcuts with the same name of the document are being added in their place. These shortcuts actually launch a thumbs.db(x) file which is the Shylock Trojan, and they are meant to trick the user into running the threat. This is common behavior of for threats, as noted in this blog article from May 2012,...

Read more
Symantec Protection Engine Traffic Monitor - The hint in getting your SPE infrastructure sized accordingly
toby | 11 Jun 2013 | 0 comments

The Symantec Protection Engine (SPE) Traffic Monitor is a command line tool coming with the installation sources of SPE and can be used for a correct sizing and configuration of a SPE environment.

 

When having a NAS environment (f.e. NetApp) and thinking about protecting it with SPE via RPC, you always have the questions about how many scan servers you may need, with what particular configuration.

 

The SPE Traffic Monitor is helping you to determine statistics that you should be aware of when planning the correct sizing and configuration of SPE and therefore you should consider it in every case. You can also re-run periodically the SPE Traffic Monitor to verify whether your sizing is still adequate for the scan requests that you need to deal with.

 

Technically the Traffic Monitor simulates the SPE and therefore on your NAS System you would need to create still a virus scan configuration. This helps in addition to apply the...

Read more
The “Cyber Phenomenon” – Is it just hype or does cyber offer real business opportunity?
James Hanlon | 10 Jun 2013 | 0 comments

You must have been taking a long (and probably well deserved) holiday if you have not noticed the increasing use of the term “cyber” in the press recently.

Anything security related is now a cyber risk, a cyber incident or a cyber attack. Governments are driving cyber strategies, citizens need to be cyber aware, businesses are tabling cyber projects, companies are building cyber capabilities, vendors are creating cyber solutions and consultancies are creating cyber practices to help you enhance your cyber resilience.

With all this hype, the key question is - what is different from the infrastructure and information security we have been doing for years and this new cyber approach? This is a good question because everyone seems to have a different perspective on cyber. And for very good reasons.

At Symantec, we get the opportunity to discuss the different interpretations of cyber with many types of users and businesses – consumers, small and...

Read more
What's new with Latest Symantec Endpoint Protection SEP 12.1.RU3
Mithun Sanghavi | 06 Jun 2013 | 11 comments

Hello,

Symantec Endpoint Protection 12.1.RU3 has been released on June 6 2013.

You may find the latest release, Symantec Endpoint Protection 12.1.RU3, here:

This build's version is: 12.1.3001.165

Upgrade and Migration paths

Symantec Endpoint Protection 12.1.3 (RU3) can upgrade seamlessly over the following:

  • Symantec Endpoint Protection 12.1.2100.2093 (RU2 MP1)
  • Symantec Endpoint Protection 12.1.2015.2015 (RU2)
  • Symantec Endpoint Protection 12.1.1101.401 (RU1 MP1)
  • Symantec Endpoint Protection 12.1.1000.157 (RU1)
  • Symantec Endpoint Protection 12.1.671.4971 (RTM)
  • Symantec Endpoint Protection 11.x (can be upgraded to enterprise version only)
  • Symantec Endpoint Protection Small Business Edition 12.0

Symantec Endpoint Protection 12.1.3 (RU3...

Read more
Knowledgebase Articles for Symantec Endpoint Protection SBE 12.1. RU3
Mithun Sanghavi | 06 Jun 2013 | 0 comments

Hello,

Here are the Knowledgebase Articles available for Symantec Endpoint Protection SBE 12.1.3001 (RU3) which would assist you to prepare for this Latest Release.

NOTE: This Article would be updated as and when new Articles in reference to Symantec Endpoint Protection SBE 12.1.3001 (RU3) gets published.

 

Product Guides

Release Notes and System Requirements for all versions of Symantec Endpoint Protection and Symantec Network Access Control

http://www.symantec.com/docs/TECH163829

Symantec™ Endpoint Protection, Symantec Endpoint Protection Small Business Edition, and Symantec Network Access Control...

Read more
Knowledgebase Articles for Symantec Endpoint Protection 12.1. RU3
Mithun Sanghavi | 06 Jun 2013 | 1 comment

Hello,

Here are the Knowledgebase Articles available for Symantec Endpoint Protection 12.1.3001 (RU3) which would assist you to prepare for this Latest Release.

NOTE: This Article would be updated as and when new Articles in reference to Symantec Endpoint Protection 12.1.3001 (RU3) gets published.

 

Product Guides

Release Notes and System Requirements for all versions of Symantec Endpoint Protection and Symantec Network Access Control

http://www.symantec.com/docs/TECH163829

Symantec™ Endpoint Protection, Symantec Endpoint Protection Small Business Edition, and Symantec Network Access Control 12.1.3 Release Notes

...

Read more
Latest Symantec Endpoint Protection Released - SEP 12.1.RU3
Mithun Sanghavi | 06 Jun 2013 | 15 comments

Hello,

Symantec Endpoint Protection 12.1.RU3 has been released on June 6 2013.

You may find the latest release, Symantec Endpoint Protection 12.1.RU3, here:

https://symantec.flexnetoperations.com/control/symc/registeranonymouslicensetoken

MR3.JPG

 

This build's version is: 12.1.3001.165

Upgrade and Migration paths

Symantec Endpoint Protection 12.1.3 (RU3) can upgrade seamlessly over the following:

  • Symantec Endpoint Protection 12.1.2100.2093 (RU2 MP1)
  • Symantec Endpoint Protection 12.1.2015.2015 (RU2)
  • Symantec Endpoint Protection 12.1.1101.401 (RU1 MP1)
  • Symantec Endpoint Protection 12.1.1000.157 (...
Read more
Keeping your business out of the news.
MFox70 | 31 May 2013 | 0 comments

Does your customer have a requirement for monitoring servers or for Intrusion Detection? Are they asking about Real-time File Integrity Monitoring (FIM)? Have they recently failed an IT compliance or regulatory audit?

 

Usually a request to monitor server activity, or user and administrative access to a server, is driven by a few business needs.

It could be a Compliance or Audit requirement, it could be to pass information to a Security Incident and Event Management tool (SIEM) or Security Operations Centre (SOC) team, but more typically it is deemed to be good IT behaviour to keep an eye on how your servers are being used on a daily basis.

 

Let’s think about the rationale for those points.

Firstly if you are being audited, or someone in a risk and compliance role is scrutinising your environment, the process of generating incidents which are then analysed and potentially acted upon is actually the housekeeping role that...

Read more
AAA rated by Dennis Technology Labs for small business anti-virus protection
Philip Routley | 29 May 2013 | 0 comments

Real world tests show Symantec Endpoint Protection Small Business Edition 2013 leads the pack

Symantec’s endpoint solutions, designed for consumers, small businesses and enterprises, were recently awarded top honors from Dennis Technology Labs, specializing in security testing that uses a world-class anti-malware framework.

  • Symantec received Dennis Technology Labs’ “AAA” rating and received the highest scores across every category in its Anti-Malware testing.
  • Norton Internet Security scored the highest for home protection, while Symantec Endpoint Protection Small Business Edition 2013 (SEP SBE 2013) won for small business protection and Symantec Endpoint Protection 12 won in enterprise protection.

SEP SBE 2013 was the only small business solution to receive the Dennis Technology Labs AAA award. Testing was performed over a 3 month period by exposing...

Read more