#1 Question: Will this protect against new ‘Crypto’ malware such as CryptoDefense, CryptoWall, etc., and their newer v2, v3, and future variants? A number of new CryptoLocker clones have emerged that can also be prevented by CryptoPrevent. The majority of these are protected against by default protections with their older versions, but newer variants are coming out that can only be […]
CryptoPrevent v7.3.x brings some new features, more clarity on protection levels, and improved protection! First, CryptoPrevent now supports SSL/TLS encryption and StartTLS for your SMTP server settings! This enables support for a wider variety of SMTP servers, allowing users requiring this level of encryption to configure their email alert functionality. Previously only SSL was supported. […]
Changes in v7.0: NEW simplified and easy to understand interface, replacing the many obscurely labeled protection option check boxes with a few simple protection “levels” to select from (the old interface still exists in the Advanced menu, and it has been updated as well.) Updated to not trigger Malwarebytes Anti-Malware detections with the installed version (thanks to the MBAM […]
Previously, CryptoPrevent only came in a standard EXE based installer file, which is great and can be deployed silently/automatically via command line parameters, and this is ok for those with RMM tools to deploy with. Unfortunately most admins of domains were stuck without a way to deploy CryptoPrevent via GPO, as it was not available as […]
CryptoPrevent v6 is no longer based solely on Windows software restriction policies, and now includes a real-time filter and definitions files/updates! New ‘Filter Module’ that can filter certain executables against hash based definitions, can also filter based on other criteria using a more complex rule set, and allow user the option to run the file anyway. Enabled […]
As you may have heard, there was a recent DoJ/FBI take down of the main network of criminals responsible for distributing the CryptoLocker malware. This does not mean the end of ransomware threats, so CryptoPrevent has been updated several times since the take down, and it will continue to be updated as I can do it. There are […]
CryptoPrevent Premium users with v4.7+ now have the ability to create custom block or allow policies!!! This does follow certain syntax, so please see this forum thread for more information. This can be a very effective but also very DANGEROUS feature, so please do NOT use this feature if you are not comfortable with Windows […]
New option to block the execution of SYSKEY.EXE as recently being exploited by malware. See this thread for the initial idea, thanks Simon!
Not a big change and certainly NOT one that will affect home users, but larger business users may be affected. v4.3.2 – added support for redirected %appdata% directories (Windows folder redirection typically only used on larger networks.) http://www.d7xtech.com/cryptoprevent-malware-prevention/
Here’s an interesting email I just received by Chief-01 from deviantart.com: “My friend’s company got hit by Cryptolocker and they bought the key, but their computers got moved around before they paid and not all the files got decrypted because the registry paths to the files were no longer valid. I wrote a python script […]
Join us for live tech chat, product questions, support, and technical training right here!
Customer or not, you are welcome to drop in and discuss anything ‘tech’ with us!