All-New: SiRON RMM Ransomware Detection
What is RMM Ransomware Detection?
SiRON RMM Ransomware Detection complements other endpoint security applications such as antivirus packages to provide an extra layer of security and helps reduce the impact of a ransomware attack. It is a completely new behavioral-based engine, rather than a signature-based approach that compares files to a known database, that monitors for crypto-ransomware, and alerts us when ransomware starts to encrypt files. This is different from ransomware detection which looks for the presence of ransomware in backups, which could be a significant amount of time after a ransomware attack occurs.
- Monitor for ransomware at scale. SiRON RMM’s powerful policy-driven approach allows you to quickly and consistently configure RMM Ransomware detection to monitor all your windows devices for ransomware.
- Prevent the spread of ransomware. Once ransomware is detected, SiRON RMM will automatically notify technicians the moment files start being encrypted by ransomware rather than waiting for a user to report the issue. RMM Ransomware Detection can automatically attempt to terminate the ransomware process and isolate the affected device from the network to reduce the impact of ransomware on the client.
- Reduce time to remediation. Infected devices automatically isolated from the network still maintain contact with SiRON RMM, providing contextual information enabling technicians to respond faster and take effective action, including recovering to a previous state with integrated SiRON Continuity devices.