this post was submitted on 12 Mar 2024
98 points (91.5% liked)

Technology

59587 readers
3292 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Am I too pessimistic about this? Today it can detect ransomware, the next day could be malware, and the day after can be any file.

It's just a data filter that's build in to a hardware and possibly no way to trun off. Last thing I want is a black box watching what I stored on my drive.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 9 points 8 months ago (1 children)

Just to play devil's advocate here: if that system can scan better than current systems, it's already a win. If that system can scan more efficiently than current systems, even with false positives, that could be a win, if used as a screening layer.

There could be use cases for this, or it's just buzzwords and marketing.

[โ€“] [email protected] 5 points 8 months ago* (last edited 8 months ago)

This doesn't sound any different than what most host based AV already do. The novel idea is implementing it in on the storage array directly in a way that doesn't hose performance. That means instead of needing 100% coverage of all clients to detect/ prevent ransomware encrypting your network storage, the storage array can detect it and presumably reject the compromised client.