Yesterday's news :
modzero Security Advisory: Unintended/Covert Storage Channel for sensitive data in Conexant HD Audio Driver Package. [MZ-17-01]
Beware! Built-in Keylogger Discovered In Several HP Laptop Models
Thursday, May 11, 2017 Swati Khandelwal
Your HP laptop may be silently recording everything you are typing on your keyboard.
While examining Windows Active Domain infrastructures, security researchers from the Switzerland-based security firm Modzero have discovered a built-in keylogger in an HP audio driver that spy on your all keystrokes.
Here's how to Check for and Remove the HP MicTray64 Keylogger
According to modzero, to check for and remove the HP MicTray64.exe keylogger, you should follow these steps:
After following the steps, the keylogger will no longer be active and will not start on reboot.
The question is : can ENS10 (or VSE, or...) protect us against these? And how (what do we need to do)?
IOW: there was a functionality for user-defined "unwanted programs (or files)" in VSE. Is there anything similar in ENS10 ?
Message was edited by: Serge M.
Looks like HP had just released the updated driver. It is in the below URL:
Since you know about the UPNP file name, "MicTray64.exe /MicTray.log ", you can create an new Explort Prevention Rule to block or report those HP driver related files created on C:\Users\Public\MicTray.log.
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center