What is our primary use case?
The use case for this product is to have a solution for Zero-day attacks. All the ransomware that is now happening in many companies, this product is a solution for that. Ransomware is like a virus and transforms, it's changing every day. This product really is the best solution for this security issue. It's protecting the end-point from a ransomware threat.
Its performance has been great. I did a PoC and many tests with different kinds of environments and with different kinds of ransomware viruses. This product provides a great solution. It stopped every one of them.
How has it helped my organization?
The benefit is that it gives a solution to a critical issue that we were facing, to Zero-day attacks and the ransomware threat. The company feels more secure and is working more securely without fear of opening every email or having to be suspicious. They know they have a solution that can protect them.
What is most valuable?
First of all, it does the job. It prevents harm to the operating system. Also, the visibility it gives to the user and to the administrator is very good, it provides visibility in a very convenient, easy way.
What needs improvement?
The main feature that is missing is to have the same solution on servers. Currently it's only protecting the client side, not the server. If they would add the server in the same solution, that would be great.
You also need to protect the servers. When you're installing antivirus, you install it on the client and also on the servers, because also servers can be affected by this vulnerability.
For how long have I used the solution?
What do I think about the stability of the solution?
The stability is pretty good. It affecting the OS in a very minor manner, but it's very, very stable.
What do I think about the scalability of the solution?
The scalability means you can grow with the product, no issues. You can install it in however many stations you would like. It's aiming at enterprise companies. So no issues with the scalability.
How is customer service and technical support?
That technical support is very good, because when you install it in a company, you install it in groups. What happens is, the product is learning the behavior of the users on the OS. After it has learned, you switch it from learning mode to protect mode. You need support to do that, but the support was excellent.
Which solutions did we use previously?
I was using an anti-virus. Anti-virus was giving a good solution to many virus threats, but when you're talking about the Zero-day attacks and ransomware, the anti-virus does not give you this protection and you need to add a different product to protect your assets.
So I added this product, I didn't switch. The anti-virus plays one role, the ransomware plays another role.
How was the initial setup?
The setup is straightforward because you install it, first of all, in a station not connected to your network, see how it's working, the normal PoC procedure. It's quite easy to install and to implement.
Which other solutions did I evaluate?
SentinelOne, also an Israeli company, has a similar solution. But from a short test, Nyotron beat SentinelOne at stopping ransomware worms much more efficiently.
What other advice do I have?
The criteria were that the solution would do what we expected with minimum performance issues, that it would not affect the operating system, and would come from a solid company that has customers who trust the product. They would have sales within the US too. I think the FBI or police in the US are using this product. Also, it was PoC-ed by the major security institutions within Israel, the Mossad, and the Shabak. They're in the process of implementing it here, in Israel, also. Those things would give us quite a level of confidence that the product and the vendor are safe, and good to work with.
I think the advice that I would give is, first of all, to try the product to see that you have confidence that it does create any performance issues on the client. Of course, check that this product is protecting the assets, the client. Different companies have the different systems. You need to check that the performance is not affected because of this product.
I would rate it an eight out of 10 because, first of all, it's doing the job. It's protecting the client from ransomware. Period. I don't give it a higher rating because it's missing some features for the server. I think it's very important to also protect your assets on the server side and not just on the client side.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Sep 15 2018