To expand your visibility over possible vulnerabilities in your environment, we have expanded PC Matic PRO‘s Endpoint Vulnerabilities report to include two new reports: SuperShield Blacklist/Learning Mode Enabled, and Lockout Thresholds Not Set.
SuperShield Blacklist/Learning Mode Enabled
When SuperShield is left in Blacklist Only or Learning Mode outside of a normal test or implementation phase, it leaves devices vulnerable to attack. All devices should be running in SuperShield Protection mode to remain secured by our whitelist based protection. The whitelisting applications feature protects all devices from malware and ransomware threats.
Any devices in Learning Mode or Blacklist Only mode will populate here with a quick toggle to switch them over to SuperShield Protection. It is normal to see devices here while implementing in Learning Mode, but that phase should end after a couple of days. Learning mode should be temporary and the whitelisting of applications should be on to maintain optimal system security.
Lockout Thresholds Not Set
PC Matic now automatically sets the Windows Account Lockout Threshold to further secure your devices from brute force attacks. This setting specifically stops frequent incorrect login attempts to a user account which users would normally log into to gain access to RDP. This includes other access points to the network. Our Secure Remote Desktop Access Control software protects the network by carefully monitoring remote access points. An important feature is automatic alerting on any possible system intrusions.
We automatically set this threshold for you. If any devices are not pulling that setting down, or it was reset, they will populate here. You can adjust the settings yourself, or apply our recommended defaults.
PC Matic Strongly recommends at least using the recommended settings below to keep your devices secure from brute force attacks. In most cases, normal users will not fail their login 10 times during a 5-minute window. This means they will never see an inconvenience from this security setting.
You can, however, make this setting much stricter if you’d like. Simply lock login attempts down even more by using something similar to the high-security settings below.
PC Matic Recommended/Default Settings
- Threshold – Account Lockout Threshold: 10
- Duration – Account Lockout Duration: 5
- Observation – Account Lockout Observation: 5
To learn more about Account Lockout Threshold, the use of secure RDP features, and what each individual setting means, you can read our full breakdown. PC Matic security software has a variety of computer security features that work together with our global whitelist. These include automatic device authentication, remote machine and software management, automatic security patch updating, and network security performance monitoring.
PC Matic Endpoint Vulnerabilities Features
Secure your system from endpoint vulnerabilities with PC Matic security software. Visit PC Matic for the Detect and Respond on Endpoints article.