Cylance Questions
-
@Jstear said in Cylance Questions:
@scottalanmiller said in Cylance Questions:
@Jstear said in Cylance Questions:
Wow! A lot of hate thrown at ESET. I must be lucky because in the 5 years I've been using it, I haven't seen a single threat get through.
We were outright scammed by them. We consider them a criminal entity, not just a bad vendor. They are blacklisted here and not allowed to be deployed, period. They actually tried to steal from us and our customers. We lost a fortune dealing with them and will never, ever do business with them unless they can provide solid documentation of their staff involved being fired and charges filed against them in court. They've failed to do so, we are considering the issues to be institutional and not something that can be fixed as it is just what the company is.
This is exacerbated by the fact that they are a security vendor so even more critical that they be ethical and trustworthy. You should never let an ESET rep in the door, let alone their software on your systems.
Is there a post or blog that you have written about this incident? I'm curious to learn more.
Probably, but it has been a long time. No idea where to find it Basically their sales staff had a kill switch on our software and would regularly kill ever ESET install we had (including customers) and turn off the AV and refuse to turn it back on to extort more money from us - which is super illegal and unethical. Not only that, for a long period of time, they had effectively gone out of business and literally couldn't turn their product back on because there was no staff working and no way to call in and get support. It was layers and layers of major problems from criminal theft, extortion, non-working phone systems, total lack of customer support, etc.
-
What is a Cylance? I see the GG's swarming the "Top A/V of 2016" thread at SW...
For some reason, I associate them with Battlestar Galactica... -
@scottalanmiller said in Cylance Questions:
@Jstear said in Cylance Questions:
I tested out Cylance to see if it was as great as everyone says it is, but it was basically Webroot from what I could tell. The biggest issue I had with it was I couldn't do much management. I has to send most requests to the dealer I was getting the trial from. They said that was going to change in the future though.
I've not heard of anything that really differentiates them from Webroot (other than costing way more.) They describe this awesome way that they work, but Webroot describes that way too. So not sure how much different they are. They had a session at SW last year but blew it big time - which was not really their fault and they've apologized and explained about that and that's all fine, but they had an opportunity to explain what made them different and failed to do so. They sound like a good option, but with Webroot at there, more mature, at a fraction of the price, I've not heard a compelling argument for Cylance's value proposition other than providing an alternative.
To boil it down to the essentials we do:
- Online database to identify known malicious software
- Machine Learning and heuristics to catch unknown bad actors
- Journaling and rollback for anything we can't immediately identify
Cylance focuses on one layer which is the machine learning and heuristics to classify software as good or bad. Their approach puts all their energy into making #2 the best it can be, whereas we have three layers that we spread our effort across. Different approaches, but both different from and superior to signature-based definitions.
-
@Danp said in Cylance Questions:
@scottalanmiller IIRC, Vipre effectiveness dropped considerably after they were sold....
And no more needs to be said.
Company bought out? Danger Will Robinson moment....
-
@Nic said in Cylance Questions:
@scottalanmiller said in Cylance Questions:
@Jstear said in Cylance Questions:
I tested out Cylance to see if it was as great as everyone says it is, but it was basically Webroot from what I could tell. The biggest issue I had with it was I couldn't do much management. I has to send most requests to the dealer I was getting the trial from. They said that was going to change in the future though.
I've not heard of anything that really differentiates them from Webroot (other than costing way more.) They describe this awesome way that they work, but Webroot describes that way too. So not sure how much different they are. They had a session at SW last year but blew it big time - which was not really their fault and they've apologized and explained about that and that's all fine, but they had an opportunity to explain what made them different and failed to do so. They sound like a good option, but with Webroot at there, more mature, at a fraction of the price, I've not heard a compelling argument for Cylance's value proposition other than providing an alternative.
To boil it down to the essentials we do:
- Online database to identify known malicious software
- Machine Learning and heuristics to catch unknown bad actors
- Journaling and rollback for anything we can't immediately identify
Cylance focuses on one layer which is the machine learning and heuristics to classify software as good or bad. Their approach puts all their energy into making #2 the best it can be, whereas we have three layers that we spread our effort across. Different approaches, but both different from and superior to signature-based definitions.
Basically, the Fro is right. While both our logos are both green and we are both NGAV, our approaches are wildly different. (and yes, he flagged me to come take a look)
Our model is based on a mathematical equation which was made with AI. We asked our AI to define a file, essentially mapping the DNA of a file, mapping its traits/features and other aspects into this equation, which became the endpoint product. We do not rely on DAT/Signatures/heuristics/behavior, instead focusing on the combined traits of the individual file. We make a determination pre-execution in 1/10th of a second.
I'm here to answer questions, or on the other site.
-
@nadnerB said in Cylance Questions:
What is a Cylance? I see the GG's swarming the "Top A/V of 2016" thread at SW...
For some reason, I associate them with Battlestar Galactica...It's an AV product with very bad marketing message. After SW last year, I literally didn't know that they were AV even having seen them. If @Richard_Cylance and @PackMatt73 didn't work there, I'd literally still not know what they do. Cylance really struggles to get enough clear information out to make you realize what they are.
-
@scottalanmiller That's why Matt and I are here - to make the message clear.
-
@Richard_Cylance said in Cylance Questions:
@scottalanmiller That's why Matt and I are here - to make the message clear.
Yes, Cylance has been making a lot of strides this year to fix messaging gaps since last year.
-
https://community.spiceworks.com/topic/post/6159618
More reading for fun.
-
A Cylance demo product would be nice... just saying.
-
@zuphzuph said in Cylance Questions:
A Cylance demo product would be nice... just saying.
The word seems to be "Soon"
-
You can get a demo (POC), but you have to go through a third party, not Cyclance themselves.
-
@Jstear said in Cylance Questions:
I've heard that Cylance sold their algorithm to Webroot. Whether that is true or not, I'm not sure.
Absolutely not. I can say with near total certainty that we will not be selling the algo to any competitor.
-
@PackMatt73 That came from one of your resellers. I took it with a grain of salt.
-
@PackMatt73 Webroot sold their marketing exec to Cylance.
-
@brianlittlejohn said in Cylance Questions:
I have had one issue that I haven't contacted Tech Support about yet... Virtual Box will not run with Cylance installed.
Hey Brian... if you want to drop me a DM, I can help
-
@Jstear said in Cylance Questions:
You can get a demo (POC), but you have to go through a third party, not Cyclance themselves.
Depends on the size of your environment. Yes, for SMB, we do work through our vetted, certified partners.
- <100 seats, we refer you to a Cylance certified MSSP for POC & management of the environment
- 100-499, we refer you to a Cylance certified MSP for POC
- 500+ Cylance manages the POC
-
@Jstear Which reseller? We need to get that corrected immediately. Please DM me those details.
@zuphzuph said in Cylance Questions:
@PackMatt73 Webroot sold their marketing exec to Cylance.
FTFY - Sold = Lost. Exec = guru
-
@Jstear said in Cylance Questions:
@PackMatt73 That came from one of your resellers. I took it with a grain of salt.
Wow
-
Wow to a partner saying that.