Endpoint protection - Home

Tom has often referred to endpoint protection solutions rather than the L7 firewall approach.

Which of these software options, would you recommend for a typical home of mixed devices, wintel, Appple etc?

Or is it a case of just using Nortonm, Sophos, Mcafee, Microsoft Defender and so on software options offered?

Don’t click on email links, and don’t use Windows. :stuck_out_tongue_winking_eye:

Joking aside. I’m not a fan of these home antivirus / internet security suites from Symantec, Avira, Bitdefender etc. They usually create more issues than they solve. And in a worst-case scenario, they become a security threat themselves.

Windows Defender and maybe a DNS filter like Pi-hole is usually more than enough for protecting your home PCs, and if you suspect malware you can still run a manual scan using one or multiple online virus scanners.

Here are a few explanations as to why I am not a fan of such solutions for home users:

The problem with all security solutions is that developing the software, and maintaining threat lists etc, is expensive, so it’s very likely that most of the commercial vendors of home user solutions at least are selling some of your data. Here is an example: Antivirus firm Avast is reportedly selling users' web browsing data - CNET

And a more general issue with all the security suites is that in order to provide effective protection, they have to behave like malware themselves. In fact, with such a security suite you are installing something similar to a rootkit on your PC which then connects to some servers in the cloud that belong to vendor of the security software. So If these servers get compromised or the software itself has flaws, it quickly becomes a security threat in itself.