AV Disabled (Trend Micro)

Created:2021/01/25 | Revised:2021/01/25

SYXSCORE

Severity:A level of a security risk associated with a vulnerability exploitation
CRITICAL
CVSS:Indication of a severity level of each CVE
Countermeasure:Availability of measures to reduce a probability of an attack or an impact of a threat
No
Public Aware:Availability of a public announcement of a vulnerability
Yes
Weaponized:Vulnerability being abused by exploit or malware
No

Overview

Trend Micro antivirus is disabled on a device.

Description

It is better to never disable AV software. Just because antivirus software cannot find every new piece of malware doesn’t mean it doesn’t provide a security benefit for most people. It helps save a lot of time and effort. Anti-virus software isn’t the complete solution, and it isn’t flawless. But it is part of the layered defense that can help protect any home, office, and enterprise network PCs.

There are a few cases when it is better actually to disable the AV program. For example, the feature may block a specific file that the user's trying to open and knows is safe, or it can prevent the installation of an app that the user knows comes from a trusted source. It is highly recommended to enable your AV program as soon as possible after such installations.

Impact

Cybercrime evolves and becomes more sophisticated. A situation when an AV program is disabled may serve as an open door for cybercriminals to gain access to the most sensitive information — and potentially garner control over the network computers.

Solution

It is highly recommended to enable AVan program for all systems of the enterprise network.


©2024 by Syxsense Inc. All Rights Reserved

Contact Us
Patch Management
Vulnerability Scanner