Author Topic: Behavior Shield Advanced Threat Protection  (Read 13592 times)

0 Members and 1 Guest are viewing this topic.

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Behavior Shield Advanced Threat Protection
« Reply #15 on: January 13, 2019, 09:12:15 AM »
MartinZ told it uses 3rd party service to find phony processes.

Wouldn't hurt if they explained what 3rd party services and in what way. Till now CommunityIQ was required for advanced protection so I naturally only used that and had everything else off. Which disabled this new feature and I didn't even know about it.
Referred to MartinZ. Let's see if that gets us a reply.

I can't see the point of having an in-line context menu Help function if this isn't described. 

OH, OH, seems that they have already got rid of the old very useful context sensitive help (the ? icon within sections), which is even worse.

I even tried the old F1 key for help but this is just generic, the path that Avast seem to be going down is bad, things being dumbed down, removal of some functionality and configuration being less flexible.

I disagree actually. Tons of settings were unnecessary before and way to extensive for no logical reason. New ones are much better quite frankly.

I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
Visit my webpage Angry Sheep Blog

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76037
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Behavior Shield Advanced Threat Protection
« Reply #16 on: January 13, 2019, 09:47:10 AM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Behavior Shield Advanced Threat Protection
« Reply #17 on: January 13, 2019, 04:11:13 PM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862

So, entirely useless then. Great. Aggressive at least used extensive whitelist. Moderate just plops a block message for everything even tiny bit suspicious... Which is why I never used it coz it was more annoying than Aggressive...
Visit my webpage Angry Sheep Blog

Offline igor

  • Avast team
  • Serious Graphoman
  • *
  • Posts: 11849
    • AVAST Software
Re: Behavior Shield Advanced Threat Protection
« Reply #18 on: January 13, 2019, 05:01:42 PM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862

So, entirely useless then. Great. Aggressive at least used extensive whitelist. Moderate just plops a block message for everything even tiny bit suspicious... Which is why I never used it coz it was more annoying than Aggressive...

Can you elaborate a bit? I always thought the difference between moderate and aggressive was basically just the threshold (how popular the executable is)...
I'm not 100% sure about hash whitelisting, but I would guess it's the same... and I'm rather sure the digital-signature whitelisting is the same.

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Starting Graphoman
  • ***
  • Posts: 7170
  • When you think you know, Think Again
Re: Behavior Shield Advanced Threat Protection
« Reply #19 on: January 13, 2019, 06:16:35 PM »
Can someone address the question/s in the OP's original/first post.  :)

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #20 on: January 13, 2019, 07:37:31 PM »
Can someone address the question/s in the OP's original/first post.  :)
I'm waiting for a reply in the developers forum which isn't likely to happen till Mon at the earliest.
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Starting Graphoman
  • ***
  • Posts: 7170
  • When you think you know, Think Again
Re: Behavior Shield Advanced Threat Protection
« Reply #21 on: January 13, 2019, 10:04:23 PM »
Can someone address the question/s in the OP's original/first post.  :)
I'm waiting for a reply in the developers forum which isn't likely to happen till Mon at the earliest.

+1  Yes :)

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Behavior Shield Advanced Threat Protection
« Reply #22 on: January 13, 2019, 10:40:12 PM »
I do wonder how Hardened Mode works now given there is no more option between Moderate and Aggressive setting, it's just ON or OFF.
-> https://forum.avast.com/index.php?topic=224223.msg1489862#msg1489862

So, entirely useless then. Great. Aggressive at least used extensive whitelist. Moderate just plops a block message for everything even tiny bit suspicious... Which is why I never used it coz it was more annoying than Aggressive...

Can you elaborate a bit? I always thought the difference between moderate and aggressive was basically just the threshold (how popular the executable is)...
I'm not 100% sure about hash whitelisting, but I would guess it's the same... and I'm rather sure the digital-signature whitelisting is the same.

Hardened Mode in Moderate triggered even on legit apps just because they "behaved" suspiciously. Flipping it to Aggressive all of a sudden allowed them to run those, but blocked all that weren't whitelisted. It was actually much more bearable mode to live with thanks to whitelisting and also more secure at the same time because it blocked everything that wasn't whitelisted.

Or you guys just had Moderate mode entirely broken and wasn't even using whitelist for Moderate mode even though it should have. So, I really don't know how you have it set up now without the Moderate/Aggressive modes as selection.

I'd also appreciate the explanation of the new Advanced Threat detection feature that requires sharing with 3rd parties... We don't know what it shares and who are said 3rd parties...
Visit my webpage Angry Sheep Blog

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #23 on: January 13, 2019, 10:50:50 PM »
@RejZoR,
Already asked for an answer in the Developers Forum. Hopefully we'll get a reply on Monday. :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline Be Secure

  • Long Time Avast User(10years.....) Security Enthusiast.
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1908
Re: Behavior Shield Advanced Threat Protection
« Reply #24 on: January 15, 2019, 09:41:33 AM »
@RejZoR,
Already asked for an answer in the Developers Forum. Hopefully we'll get a reply on Monday. :)
Any update?
PC- Windows10 EDU 64Bit,avast! free 21.1.2449,uBlock Origin,NVT_OSA,GoogleChrome(64bit),CCleaner,Unchecky,ZAM Free,Shadow Defender.
Security Enthusiast

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #25 on: January 15, 2019, 11:36:45 AM »
Nothing yet. I've posted that the Forum troops are getting restless. :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline MartinZ

  • Advanced Poster
  • **
  • Posts: 1057
  • Product Manager
Re: Behavior Shield Advanced Threat Protection
« Reply #26 on: January 15, 2019, 12:20:43 PM »
We are testing cooperation with Morphisec. Currently in beta only.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Behavior Shield Advanced Threat Protection
« Reply #27 on: January 15, 2019, 12:28:27 PM »
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Starting Graphoman
  • ***
  • Posts: 7170
  • When you think you know, Think Again
Re: Behavior Shield Advanced Threat Protection
« Reply #28 on: January 16, 2019, 05:37:49 PM »
I'd prefer to have an explanation on how this whole process works both within the UI and the 3rd. party sharing and how it all affects the "Advanced Threat Protection"
I am confused and don't see the answer. :-\

Offline MartinZ

  • Advanced Poster
  • **
  • Posts: 1057
  • Product Manager
Re: Behavior Shield Advanced Threat Protection
« Reply #29 on: January 16, 2019, 06:24:52 PM »
the connection to UI is that you can check the advanced protection ( in beta) but you can't do that if you have unchecked the privacy setting to share usage data with 3rd parties (in this case Morphisec) if you don't give us consent  we can't sent the data to Morphisec and therefore we can't turn on the feature. Does this explanation help?