Would be nice to have a feature where if an unknown executable is detected trying to run, that Immunet would halt the process and prompt you to allow once, allow permanently or block, default to block if you do not respond to the prompt after a couple minutes. Would be a good a good optional, additional layer or protection on top of the ETHOS and SPERO engines. I can see where this could become an issue with batch files, scripts, and and the like, possibly, but, that is what exclusions are for. I think this feature would be great, especially for ransomware protection.
Posted 15 December 2016 - 10:45 PM
What you're referring to would be a type of H.I.P.S. or auto-sandboxing feature. That would be a nice additional layer of security protocol but the fact is that Immunet does have a form of heuristic capabilities with ETHOS & SPERO enabled. Meaning that Immunet can detect and respond to as yet unseen or unrecognized malicious code.
* Immunet Global Forum Moderator *
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users