Solution Coverage

File-based Signature

Predictive Machine Learning

Behavior Monitoring

Intrusion Prevention Rules in Deep Security

Sandbox

What should customers do?

• Implement the best practice configuration against ransomware for your Trend Micro products. Refer to following KB articles:
  EXPAND ALL

   

  Endpoint Protection Layer

  • Worry-Free Business Security
    • Best practices in preventing Ransomware infection using OfficeScan (OSCE) and Worry-Free Business Security/Services (WFBS/WFBS-SVC)
    • Best Practices in enhancing protection against malware threats in Worry-Free Business Security/Services (WFBS/WFBS-SVC)
  • ApexOne: Best Practice Guide for malware protection for Trend Micro Apex One™ as a Service and Trend Micro Apex One
  • OfficeScan
    • Enabling the Ransomware Protection feature in OfficeScan (OSCE)
    • Best practices in preventing Ransomware infection using OfficeScan (OSCE) and Worry-Free Business Security/Services (WFBS/WFBS-SVC)
    • Best practices in configuring OfficeScan (OSCE) for malware protection
  • Trend Micro Endpoint Application Control: Best Practice Configuration against Ransomware and other Malware Threats with Endpoint Application Control (TMEAC) 2.0 Patch 1

  Hybrid Cloud Security

  • Deep Security
    • Ransomware Detection and Prevention in Deep Security
    • Deep Security Best Practice Guide

  Email and Gateway Protection Layers

  • SMID: How to enable ransomware category in ScanMail for IBM Domino (SMID) 5.6 for Windows
  • SMEX: Ransomware protection using ScanMail for Exchange (SMEX)
  • TMCAS: Enabling the Ransomware Protection feature on Trend Micro Cloud App Security (TMCAS)
  • IMSVA: Enabling the Ransomware Protection feature in InterScan Messaging Security (IMSS/IMSVA)
  • HES: Ransomware protection using Hosted Email Security (HES)
  • IWSVA: Configuring URL Filtering policy to block Ransomware on InterScan Web Security Virtual Appliance (IWSVA) 6.5 Service Pack 2

  Network Defense

  • DDI: Preventing Ransomware on Deep Discovery Inspector (DDI)
  • DDEI: Ransomware Protection feature in Deep Discovery Email Inspector (DDEI)

  Central Management Console

  • TMCM: Checking the information displayed in the Ransomware Prevention sub-page of the TMCM dashboard

  For other recommendations, please refer to Ransomware: Solutions, Best Practice Configuration and Prevention using Trend Micro products.

• Secure the usage of Sysadmin tools: Best Practices: Securing Sysadmin Tools.
• Contact Trend Micro Technical Support for further assistance.