Avira Url Cloud

[Emerenciana Mcgreal]

Itseems like many antivirus programs use the cloud to scan files for malware. Isn't this a privacy concern if local files are being uploaded to the cloud? For example with Automatic Sample Submission and Cloud Based Protection in Windows 10.

How exactly does this work because if some remote computer in the cloud can detect it, why not just have virus signature updates (like the old way of doing it)? If they use more advanced scanning techniques wouldn't this imply the whole file is being transferred and run?

This works differently depending on the AV that you are using. Some engines send the file to the cloud and generate a signature. In this case, the response is yes, they send the files to the cloud and this is a privacy issue (in some countries). On the other hand, some engines take metrics from the file and send these metrics to the cloud for post analysis or whatever. I would suggest you check the terms and conditions of the AV and you will probably find the answer. Or just ask them, specially if the information that they scan is protected and can not be transfered and things like that.

Against that, a lot of the time a hash (used as a numeric value that uniquely identifies a file) is enough, and much quicker to send, so I would expect a lot of the time, that is what's sent and checked. You can see this on the website virustotal.com which let's you enter a hash of a file instead of uploading the entire file itself.

Antiviruses often send suspicious files to their editors to enable further analysis by humans, to determine if they're actually harmful or not. If yours does that, this can definitely be a privacy concern, and you should think about it before deciding whether to leave it on.

Some antiviruses (e.g Avira) prompt you by default before sending each file. If yours does, there's no harm in keeping the option active. If it doesn't and you're not comfortable with a few of your files being potentially seen by humans, you should probably turn it off.

During March and April 2024 we continuously evaluated 17 home user security products using their default settings. We always used the most current publicly-available version of all products for the testing. They were allowed to update themselves at any time and query their in-the-cloud services. We focused on realistic test scenarios and challenged the products against real-world threats. Products had to demonstrate their capabilities using all components and protection layers. Further information on the compliance of this test with the AMTSO standard can be found here.

I was going to mention this in the RC1 thread but it is not really firmware related. Before Sophos got into the UTM business, I had always thought of them as an AV company but mostly for Macs. I have noticed an alarming trend lately, Avira catches more viruses than Sophos, however sophos is the recommended engine in XG and UTM9 (due to PUA detection) and sandstorm functionality.

I got a couple of random files from virustotal and tried them on UTM9 and sophos XG v16.0.5... In both cases sophos passes the virus. Sad part is that even windows defender catches these files as Trojan:Win32/Spursint.F!cl[:(]

Great answer as always Luk, dual scan makes the surfing speed a little slower so I do like you and use sophos endpoints with avira on the gateway. I am not trying to point out the shortcomings of Sophos because like you said, threats appear so fast these days that protection in layers is the best protection. I am sure there are viruses that are in Sophos database that avira is not aware of.

I know this is an old thread but I too would like to know what the users around here do in regards to single/dual engine and which they select as default? Right now I have single engine scanning on, and the engine set to Sophos, but I am starting to feel more and more that having dual engine scanning is worth a small tradeoff in speed.

Each project environment is isolated using Amazon Virtual Private Cloud (Amazon VPC). Toader estimates that the company uses between 60 and 70 percent of services available on AWS, with the most common being Amazon Elastic Compute Cloud (Amazon EC2) for compute instances, Amazon Simple Storage Service (Amazon S3) for persistent object-level storage, Auto Scaling to automatically adjust Amazon EC2 capacity up or down, and Elastic Load Balancing to distribute incoming traffic between instances.

Amazon Elastic Block Store (Amazon EBS) provides block-level storage volumes for use with Amazon EC2 instances, while Amazon Relational Database Service (Amazon RDS) offers managed database instances, although some project teams run database instances in Amazon EC2 as well. For business intelligence, Avira stores data in Amazon Redshift, with Amazon ElastiCache providing a scalable, in-memory cache in the cloud.

NEW YORK, Nov. 8, 2023 /PRNewswire/ -- COMMVAULT SHIFT -- Commvault, a leading provider of data protection and cyber resilience solutions for hybrid cloud organizations, today announced that it's marrying modern cyber resilience technologies from Commvault with advanced security and data intelligence from pioneers in cybersecurity, artificial intelligence, and cloud.

Industry leaders in these areas are integrating with the newly announced Commvault Cloud platform to provide joint customers with more ways to rapidly detect, protect, and respond to potential threats and attacks while also improving data visibility and governance. Commvault is working with partners across the security tool chain, including: security information and event management (SIEM), security orchestration, automation, and response (SOAR), network detection and response, vulnerability and threat detection and assessment, incident management, and data governance and privacy.

The timing of these security and AI integrations is ideal as companies face unprecedented volumes of cyber threats and have major concerns about what bad actors can do in terms of business disruption and brand reputations. According to a recent IDC study commissioned by Commvault, 61% of respondents believed that data loss within the next 12 months due to increasingly sophisticated access is "likely" to "very likely."1

Given these on-going concerns, Commvault believes collaboration is key. Earlier this year, Commvault announced integrations with Microsoft Sentinel and Palo Alto Networks. Today the full expansive set of security and AI partners that are integrating with Commvault Cloud includes:

"To be effective for cyber resilience, data security products must integrate with products in the cyber-recovery ecosystem," said Christophe Bertrand, Practice Director, ESG. "Our recent research on the state of ransomware preparedness shows that organizations around the world want their data protection vendors to work directly with core security tools and service providers. These integrations between security and AI ecosystem partners and Commvault Cloud can play a key role in helping companies advance their security posture while also elevating data governance."

"By integrating with a broad ecosystem of new security and AI partners via our Commvault Cloud platform, we are not only meeting customers where they need to be met at this critical moment, but we can collectively and jointly bring faster, smarter, and more connected security insights to organizations around the world," said Rajiv Kottomtharayil, Chief Product Officer, Commvault.

Avira: "The integration between Avira and Commvault could not come at a better time for customers who are increasingly bombarded by cyber threats," said Alexander Vukcevic, Director, Protection Labs and QA, Avira. "Our AI/ML-driven threat intelligence, prediction, analysis and antimalware technologies augment Commvault Cloud's powerful security features to help customers rapidly identify potentially malicious activity faster, enabling better protection against existing and emerging threats like ransomware, polymorphic and shapeshifting attacks."

Entrust: "It is critical for enterprises to protect data integrity in ways that safeguard the organization and enable growth and scale in multi-cloud environments. Entrust KeyControl Key Management Server (KMS) and nShield Hardware Security Modules (HSMs) enable customers to integrate innovative key management capabilities and robust, post-quantum ready cryptography with Commvault Cloud and the company's cyber resilience capabilities, protecting the confidentiality and integrity of critical data and enabling customers to better defend against persistent attacks," said John Grimm, VP of Strategic Alliances, Entrust.

Netskope: "With the integrated data context and visibility the Netskope Zero Trust Engine provides in combination with Commvault Cloud, customers can leverage AI-powered threat and data protection with ultra-sensitive data awareness to protect people and data anywhere they go," said David Willis, VP, Technology Alliances, Netskope.

1 Goodwin, P. (2023). The cyber-resilient organization: maximum preparedness with bulletproof recovery [White paper]. IDC. -whitepaper-the-cyber-resilient-organization-maximum-preparedness-with-bulletproof-recovery

Datto EDR + Datto AV and standalone Datto AV subscribers who are deploying the Endpoint Security agent will need to allowlist the following URLs in their local network. If URL or domain allowlisting is not possible, consider a proxy solution or integrate the device into a DMZ.

To protect the safety of all customers, we restrict inbound internet traffic from certain countries and regions where cyberattacks are known to originate. As a result, any user attempting to log in to Datto AV or Datto EDR from these locations, whether directly or through proxy servers or VPNs, will be denied access. This filtering applies globally to all Kaseya data centers and public cloud environments.

I am running my home server (File / Media / Printers) and my web server (intranet hosting / cloud services / email and messaging) using OpenSUSE 13.2 with ClamAV on both. So far (knock on wood) I have had them up and running for 12 months without any sign of trouble.

3a8082e126