Please share with the community what you think needs improvement with Malwarebytes.
What are its weaknesses? What would you like to see changed in a future version?
Overall, I haven't found any ways the solution lacks in features or usability.
I know of more than ten critical cases with clients which affect their use of the product adversely. We work with the Malwarebytes company a lot and have discussed the existing problems with the manager of Research and Development. He would not just say "You are right." But even though he knows that there are issues, there have been no changes in the results and improvements with the product even up until now. I want to help secure the environments of the clients I work for. I want to benefit a lot of people, a lot of clients and a lot of users. I have specific things, technical details for each feature and each use case that I have worked on. But the company is not making the broader changes they need to in the product to make it an effective solution. The most obvious problem is that basically the product comes up with a lot of false positives. This needs to be resolved. There are other particular pain points with the current solution which have to do with the reporting and the problems with difficulty of installation. But these are still not the biggest problems for people using the product. An additional feature I would like to see is a randsomeware roll back for 72 hours and for 100 GB of files. It is supposed to be a feature in the EDR to defend against randsomeware. But we cannot stop ransomware with EDR. We are supposed to be able to roll back the encrypted files. But it is a fact that, in production, we can not effectively roll back the ransomwares and encrypted files after this kind of attack. The company fails to say we can not go back. It is an important feature in these products and to the clients. But it is not effective.
If the company was going to do something, it would be great if they could open up the free version to an app blocker that would block malicious applications. I don't think they would do that because they need to make money but it's what I would suggest they do. There's no indication on the system as to when the software is doing a scan. Additional features they could include would be notifications. The solution doesn't let you know that it's scanning the system, it's all done in the background and it might be helpful if a little icon popped up and said, I'm just running a scan for you.
We experience a lot of false positives. I would be helpful to have more built-in exclusions.
This solution reports far too many false positives!
I would like to see it protect itself a little better from other people's updates. Every once in a while, the product gets clobbered. It's not just one thing. So, it could be a Microsoft update or a Kaspersky update. It could be another update from some other application, then you just have to reload it. This doesn't happen that often. It happens around three or four times a year.
There is room for improvement in the way it is deployed, in terms of being able to distribute it. Right now we have to get our hands on a machine to deploy it. It would be nice if there was an easier system.
I would like to see integration with other vendors going forward. Contacting other teams for sending information to partner organizations could be improved.
If everything were on the cloud then it would be nice. The company and the enterprise are in the cloud now, so we can manage security through there, and then try to put another layer of security in place. The product update capability needs to be improved.
They should make it faster, less taxing on the processor.