Intel Security SNS ProTip for VSE: Are You Using Write Scanning Only?

Version 1

    Configuring the real-time or On Access scanner (OAS) to only scan files “When writing to disk” makes an environment vulnerable to malware outbreak. Write scans are performed asynchronously, meaning, it’s not possible to block other file I/O activity with a write scan; only the “When reading from disk” setting can block file I/O (it’s a synchronous scan). Consequently, environments that only use the Write Scan feature are at risk of experiencing an outbreak even from known malware, because the code can be written to disk and executed prior to a scan occurring. Protect your environment; enable Read scanning.

    For more information, see KB 85136, Product Management Statement for On-Access Scan Configuration in VirusScan Enterprise 8.8 (http://kc.mcafee.com/corporate/index?page=content&id=KB85136). For an in-depth look, visit the community blog on this topic here: https://community.mcafee.com/people/wwarren/blog/2015/07/13/on-access-scanner-wr ite-scan-it-doesnt-work-like-that

    For more resources, visit the ServicePortal and search for related content. Also, visit the McAfee VirusScan Enterprise Community [https://community.mcafee.com/community/business/system/vse].

    SNS ProTips help you maximize your protection with troubleshooting, best practices, how-to tips, and links to Knowledge Center resources. To unsubscribe from ProTips or change your SNS settings, visit the SNS Subscription Center.