It used to be that antivirus tools focused on Trojans, worms, and viruses. This AV software relied on strong signature-based detection and regularly-updated signatures. Newer AV software has added behavior-based protection against unknown threats.
Antimalware software now also focuses on exploit tools and off-the-cyber-shelf software used by malicious long-term threat actors (Advanced Persistent Threats) to maintain access over time and continue their exploit.
AV and AM software hold many things in common now. I just wanted to mention what I use: Malwarebytes. For home users, it can function as both a preventive tool and a reactive one when dealing with a cyber attack. It alerts based on actual or suspected attacks and compromise, quarantining as necessary. You are provided a 30-day (or when you need) summary of actions taken .
You need protection against nasty things like ransomware. As I mentioned, personal computer compromise is not as common as a business or corporation being attacked, but–
Federal Bureau of Investigation (via Ransomware Statistics)
- 1 in 3,000 emails that pass through filters contains malware
- The average cost of remediating a ransomware attack is a staggering $761,106
- On average, organizations pay a ransom of $233,217
- 99% of organizations that paid the ransom received a functioning decryption tool
- 127 new ransomware families were discovered in 2020
- In 2021, ransomware attacks against businesses will occur every 11 seconds
- By 2025, organizations will invest more than $1 trillion in their cybersecurity
Basic Setup For Malwarebytes
Opening screen is fairly self-explanatory. Prior discoveries of possibly malicious software under protection history, on the left side. Scanner schedule and option to run at any time at center. Real-time Protection status on right.
When scanning you can see Malwarebytes checking for its updates, then scanning through each type of threat.
The bell icon at top right will give you your notifications, if any. The gear icon will bring up the settings screen. You can check for Malwarebytes updates by clicking the button. Make sure Add Malwarebytes options to Windows Explorer is selected. If you scroll down, you can also select whether manual scans take priority over other applications by selecting the preferred option.
The only other screen I wanted to cover is the security screen. Make sure the Update threat intelligence is set to your preferred update time. I use 1 hour because I like the up-to-date feeling. Automatic quarantine should be selected. Windows startup should definitely be turned on. Select all four options under Scan options, Always register Malwarebytes in the Windows Security Center, Always under both Potentially unwanted items, and Exploit Protection should be turned on. Leave Manage protected applications and Advanced settings alone.
That’s all there is for basic setup. Leave a comment for explanation of any of this.