This post has been de-listed
It is no longer included in search results and normal feeds (front page, hot posts, subreddit posts, etc). It remains visible only via the author's post history.
Hello
I'm working in the cybersecurity department of a healthcare facility where we have multiple medical devices and server systems with applications running on and Windows Servers and Windows 10 computers
EDR solution is installed on them. we've running into a issue where certain vendors provide folder paths to whitelist in order to prevent the quarantine or deletion of files
My question is: Once these folders are whitelisted, what measures can we take to ensure that they are safeguarded against potential malware threats? I'm worried about the risk of malicious entities taking advantage of these exclusion paths. Are we supposed to add these exclusions ? Does adding exclusion add any security risk?
Thanks in advance
Subreddit
Post Details
- Posted
- 1 year ago
- Reddit URL
- View post on reddit.com
- External URL
- reddit.com/r/AskNetsec/c...