Endpoint protection refers to software that protects a user’s desktop, laptop or mobile device from viruses, spyware, adware and other types of malicious software called malware which would otherwise disable or destroy it.
Today there are two basic methods of detecting malicious software: Signature based versus behavioral based.
Signature based detections have been around since the advent of computer viruses and are dependent upon research and discovery of new virus strains. When a virus is discovered, programmers write a signature for that virus which tells the software how to recognize it if detected.
This is a tried and true method for older malicious software. However today there are increasing threats in variants of Ransomware in which the code encrypts or otherwise disables a user’s computer until a ransom is paid.
Ransomware does not behave like old school viruses and is very hard to detect WITHOUT the second type of detections which are behavioral based.
Behavior based anti-malware software looks at thing like, perhaps the web browser should not be encrypting my files! Or perhaps my Outlook email program should not be deleting files!
In this way, the software can detect abnormal destructive behavior and halt it.
What should I look for to protect my EMAIL?