Windows 10 Pro Sandbox Isolated from malware?
-
Scenario: running Windows 10 Pro Sandbox. Firefox browser. A friend sends you a link for a driver. You click on it a few times, it did not respond. Then you get dialog box saying your machine is infected, click here to clean it.
Can the infection occur or is the malware download or whatever completely gone when you close the session?
Please don't read anything into the scenario or question or offer advice! Thanks -
BTW I Always run email clients only in Sandbox.
-
When you close it out. it will disappear. It's like a snapshot that gets deleted before you relaunch it.
-
Thanks for reply Ronnie.
Then the following I absolutely do not understand. I work for a big company in Detroit. Cyber October we had lectures/webinars almost everyday. Not once was it mentioned to run email in Windows Sandbox (At home. Although why not set it up at work too). When I asked about it some excuse was given which I thought quite lame. But also in ITPRO Malware courses and such I don't recall it mentioned.
What is heard is, "Don't click on unsafe links." Which is absolutely inane because no one knows if a link is truly safe.
I wonder why running email and one's browser in a sandbox is not the the first item mentioned in any Cyber security discussion. Of course there are things needed to learn. But these companies relying on users not clicking on links when the company can be brought down by doing so is preposterous! -
I don't see where to, "...mark as solved"
-
I believe the best answer with regards to your comment "No one knows if a link is truly safe" can be summed up like this.
You don't know its safe, as you said. The best behavior is to go to the website of whichever company is contacting you and verify the information there. If Microsoft says your account has been shut down, go to their site and login yourself to verify. If a vendor is asking for additional payment, check with your finance team or call the vendor. Its steps like these that can really help protect your accounts and the security of yourself and company. I believe Daniel was talking about steps like these in one of his cybersecurity webinars.
Hope this helps!
-
@Forrest-Stivers-II,
Security is easy to implement but harder to explain. In the enterprise, most places will block you from accessing what policy has stated as "unsafe links". or has implemented a proxy etc. This abstracts security so the user just does what he/she does. They have a plan for when the computer gets infected for remediation. End User Awareness training cannot be too difficult or most people will not even try.