tarvin - Slashdot User

Comment Net security gain? (Score 1) 14

by tarvin on Saturday October 12, 2024 @03:00PM (#64859515) Attached to: Halcyon Announces Anti-Ransomware Protection for Enterprise Linux Environments

The vendor states "protecting these systems is often an afterthought". No, what would be an afterthought would be to install some (probably priviledged) system agent with no evidence of it resulting in a net security gain. Add-on agents are most often at best a new of for tech debt. I once ran across a server which had five management/"security" agents, several of them with CVEs. Unfortunately, if we don't start questioning this, it will likely get worse, as I've ranted about here: https://troelsarvin.blogspot.c...

Submission + - SPAM: Antivirus considered harmful

Submitted by tarvin on Thursday October 03, 2024 @05:15PM

tarvin writes: 2024 has seen new cybersecurity regulations and frameworks, such as NIS 2 in Europe and CSF 2 in the US. Good things may come from this, such as an increased focus on patching and getting rid of end-of-life installations.

But there is also the danger of an ever-increasing set of IT policies which overreach and end up causing more harm than good.

In particular, we may see more organizations requiring that antivirus be installed on IT systems indiscriminately. But antivirus add-on products bring along problems, new attack surfaces, and break several proven system administrative principles.

I have written about this, and I'm curious to see /.org's reaction.
Link to Original Source

Slashdot Top Deals