This may lead to a situation where the file becomes susceptible to being overwritten by a malicious user or script, causing a potential data loss scenario. We recommend disabling Arbitrary file write. To do so, open the F-Secure Policy Manager Console and go to Settings > Security Policy and select the Arbitrary file write policy. Click the Edit button next to the Arbitrary file write policy, select the Enabled radio checkbox, and click the OK button to apply the setting. The Arbitrary file write policy is now disabled and cannot be enabled again.
Disable Trusted Collaboration
Trusted collaboration is a privilege granted to endpoints by F-Secure's F-Secure Discovery Service. Endpoints are trusted to share files with other trust partners that they have been granted permission to collaborate with. If the endpoint has been granted access to shares and the sharing path is compromised or deleted, the endpoint will lose the ability to perform trusted collaboration.
There are two ways in which you can turn off Trusted collaboration. You can either disable Trusted collaboration for all shares on all endpoints, or you can disable it for individual shares on individual endpoints.
To do so, open the F-Secure Policy Manager Console and go to Settings > Policy > Security Policy and select Trusted Collaboration policy from the list of policies. Click the Edit button next to the Trusted Collaboration policy, select the Enabled radio checkbox, and click the OK button to apply settings. You can also use a Group Policy object (GPO) to apply settings across multiple systems at once. To do so, open up Active Directory Users and Computers on a domain controller and go to Computer Configuration > Administrative Templates > Windows Components > File Services > Files Share Privilege Level . Then double-click Trusted Collaboration and set it as Disabled .
F-Secure Safe Money
F-Secure Safe Money is a new personal security tool that provides protection from reloading or unauthorized changes of your debit and credit cards, as well as bank accounts. The software is available for free on the F-Secure website, and it does not require any installation. This means you can use it on multiple mobile devices, preferably using F-Secure Secure Browser.
Disable SMBv1
Arbitrary File Write
To disable SMBv1 Arbitrary File Write: Open the F-Secure Policy Manager Console, go to Settings > Security Policy, and select the Arbitrary file write policy. Click the Edit button next to the Arbitrary file write policy, select the Enabled radio checkbox, and click the OK button to apply the setting. The Arbitrary file write policy is now disabled and cannot be enabled again.
Browsing protection and blocking of rogue files
The browser's browsing security feature provides protection against the execution of potentially unwanted code in downloaded files. This may lead to a situation where the file becomes susceptible to being overwritten by a malicious user or script, causing a potential data loss scenario. We recommend disabling Browsing protection. To do so, open the F-Secure Policy Manager Console and go to Settings > Security Policy and select the Browsing protection policy. Click the Edit button next to the Browsing protection policy, select the Enabled radio checkbox, and click the OK button to apply the setting. The Browsing protection policy is now disabled and cannot be enabled again.
Timeline
Published on: 11/17/2022 23:15:00 UTC
Last modified on: 11/22/2022 00:41:00 UTC