CSCv7|8.2

Title

Ensure Anti-Malware Software and Signatures are Updated

Description

Ensure that the organization's anti-malware software updates its scanning engine and signature database on a regular basis.

Reference Item Details

Category: Malware Defenses

Audit Items

View all Reference Audit Items

NamePluginAudit Name
2.1.6 Ensure the latest firmware is installedFortiGateCIS Fortigate 7.0.x v1.3.0 L2
2.3.3 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 14.0 Sonoma Cloud-tailored v1.0.0 L1
2.3.3 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 13.0 Ventura Cloud-tailored v1.0.0 L1
2.4.4 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 12.0 Monterey Cloud-tailored v1.0.0 L1
2.5 (L1) Host must only run binaries delivered via signed VIBVMwareCIS VMware ESXi 8.0 v1.1.0 L1
2.5.2.1 Ensure Gatekeeper is EnabledUnixCIS Apple macOS 10.14 v2.0.0 L1
2.5.7 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 10.15 Catalina v3.0.0 L1
2.5.7 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 12.0 Monterey v3.1.0 L1
2.5.7 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
2.6.5 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
2.6.5 Ensure Gatekeeper Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
4.2.1 Ensure Antivirus Definition Push Updates are ConfiguredFortiGateCIS Fortigate 7.0.x v1.3.0 L2
4.2.3 Enable Outbreak Prevention DatabaseFortiGateCIS Fortigate 7.0.x v1.3.0 L2
4.2.4 Enable AI /heuristic based malware detectionFortiGateCIS Fortigate 7.0.x v1.3.0 L2
4.2.5 Enable grayware detection on antivirusFortiGateCIS Fortigate 7.0.x v1.3.0 L2
5.9 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 13.0 Ventura Cloud-tailored v1.0.0 L1
5.9 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 14.0 Sonoma Cloud-tailored v1.0.0 L1
5.10 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
5.11 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 12.0 Monterey Cloud-tailored v1.0.0 L1
5.11 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
5.11 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
5.11 Ensure XProtect Is Running and UpdatedUnixCIS Apple macOS 12.0 Monterey v3.1.0 L1
8.8 Ensure that Endpoint Protection for all Virtual Machines is installedmicrosoft_azureCIS Microsoft Azure Foundations v3.0.0 L2
18.4.9 (L1) Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.4.9 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
18.8.14.1 (L1) Ensure 'Boot-Start Driver Initialization Policy' is set to 'Enabled: Good, unknown and bad but critical'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.8.14.1 Ensure 'Boot-Start Driver Initialization Policy' is set to 'Enabled: Good, unknown and bad but critical'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
18.9.77.3.1 (L1) Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.9.77.3.1 Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
18.9.77.7.1 (L1) Ensure 'Turn on behavior monitoring' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.9.77.7.1 Ensure 'Turn on behavior monitoring' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
18.9.77.10.2 (L1) Ensure 'Turn on e-mail scanning' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.9.77.10.2 Ensure 'Turn on e-mail scanning' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
18.9.77.14 (L1) Ensure 'Turn off Windows Defender AntiVirus' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.9.77.14 Ensure 'Turn off Windows Defender AntiVirus' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
19.7.4.2 (L1) Ensure 'Notify antivirus programs when opening attachments' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
19.7.4.2 Ensure 'Notify antivirus programs when opening attachments' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1