Changes to Antivirus memory protection settings beginning January 28

January 23, 2020

Summary

  • ITS will make changes to settings within Yale’s antivirus service, Cylance, beginning at 10:00 a.m. on Tuesday, January 28. 

  • Support providers should review the knowledge articles associated with this change. 

Details

Changes will be made to increase protection on all Yale managed computers running Cylance. 

Microsoft Windows Operating Systems

Windows systems are currently set to ‘Alert on the violation, but let it execute’ and will be changed to ‘Block the violation and send an alert’.

macOS

Devices running macOS currently do not have memory protection enabled; these will be set to ‘Alert on the violation, but let it execute’.

While memory protection for macOS devices will not be set to block applications, it is possible that memory protection is incompatible with some applications. If you suspect Cylance may be causing macOS application problems, please contact the ITS Help Desk. 

Individuals who use Cylance will continue to view Cylance notifications via the Cylance shield icon in their system tray (Microsoft Windows) or dock (macOS) and should contact the ITS Help Desk 24/7 for assistance with any issues. 

Need help?

To follow this change, individuals who use ServiceNow to manage tickets can view the following knowlege articles (login required): 

  • KB0022470 — CylanceProtect: Troubleshooting, download, and false positives
  • KB0024755 — Cylance: Identifying a memory protection incompatibility on macOS
  • KB0022634 — CylanceProtect: Safelist/Whitelist request

Others who have questions or concerns about this change should contact the ITS Help Desk at 203-432-9000.

CHG0069531