Posted on
11:47 AM
- last edited
We are currently evaluating new Anti-Virus options for our University. We are currently using McAfee with ePO. I have seen other discussions about this subject, but, many seem dated. I am curious about what other enterprise companies and higher ed schools are using for Anti-Virus and why.
Posted on 05-08-2018 11:53 AM
We currently use McAfee and ePO as well. Our decision is based on the fact we deploy it to 65K winPCs so we tack on the Mac versions to keep things reporting to a single pane.
Posted on 05-08-2018 12:14 PM
Crowdstrike and McAfee.
Posted on 05-08-2018 12:52 PM
We are using sophos endpoint protection
Posted on 05-08-2018 02:03 PM
We use MalwareBytes Endpoint Protection.
Posted on 05-08-2018 02:04 PM
A mix of McAfee on ePO and Cisco AMP for Endpoints currently but will be moving whole Mac fleet to Cisco AMP this quarter.
Posted on 05-08-2018 04:23 PM
McAfee Endpoint Protection for both Macs and PCs, and both support sides HATE it.
McAfee Mac support is pretty useless.
Heard Sophos is good.
Posted on 05-08-2018 07:13 PM
We are using Microsoft System Centre Endpoint protection , for both Mac and PC fleet . Only downside is that the Mac (and Linux) client is standalone and isn't manageable by SCCM.
Posted on 05-09-2018 06:32 AM
We use Cisco AMP.
Posted on 05-09-2018 12:09 PM
We use Sophos endpoint protection.
Posted on 05-09-2018 12:26 PM
Sophos Cloud, before that Sophos local (Cloud was affordable and one less server to maintain), before that Microsoft System Center Endpoint Protection (it missed too much), before that McAfee (some versions were frustratingly buggy, and SCEP was cheaper).
ClamX AV was also used on a case by case basis before AV clients were comprehensively deployed. MalwareBytes was considered and rejected for widespread deployment but is still sometimes used as an alternate cleanup method.
Posted on 05-09-2018 12:37 PM
Microsoft System Center Endpoint Protection here. I wouldn't recommend it as new versions are not released until months after a new OS comes out, and central management leaves something to be desired.
Posted on 05-09-2018 10:02 PM
Palo Alto Traps here
Posted on 05-10-2018 10:39 AM
CB Defense / Cisco Umbrella
Posted on 05-10-2018 11:03 AM
We use Crowdstrike and haven't looked back
Posted on 05-10-2018 11:49 AM
We use Sophos Cloud. Was OnPrem years ago, but Cloud became affordable. I've only seen a few issues with it on our fleet.
• one It's relatively low CPU overhead
• Clients keep themselves up-to-dates
• three Sophos has been more aggressive (recently) about detecting common Mac malware and Adware (MacKeeper, Geneio, etc.)
• I want a way to automate the cleanup of a Potentially Unwanted Applications (PUA). The way it's built now, I have to go into the Alerts log in Sophos Cloud and check a box to get Sophos to act on the cleanup
• If you don't stay on top of clearing your Alerts log -- acting on those Alerts -- then it quickly becomes unwieldy. And there are not great controls for sorting by Alert type, or multiple selecting all of one type of Alert (like "select all PUAs").
• Also, with a recent change in Sophos 9.7.x, the end-user can't act on an alert. Quarantine Manager is gone. So it appears that the only users who can trigger Sophos to clean up a PUA or malware is an Administrator of the Sophos Cloud console. Bleh.
Posted on 05-11-2018 03:56 PM
Bitdefender have pretty nice Mac integration, but I haven't run it on very many Mac. Good feature set on Windows as well, and can integrate with Windows 10 Advanced Threat Protection, if you're using that for PCs.
Posted on 05-15-2018 08:50 AM
Cylance here. Works great! I prefer it over Sophos Cloud which is what we were using (Good product!). That said, I'm actually contemplating a real deep look at Malware Bytes, instead. Cylance is some really serious protection, but it, along with many of the major players are focused on non-mac stuff first. The things that get my users are generally silly browser plugins and the like. In my experience, Malware Bytes is a little more, mac centric.
Posted on 05-15-2018 11:17 AM
Cylance ftw