Tamper Protection for Managed EDR for macOS is now live

Attackers are constantly trying to find ways to evade defenses on endpoints to avoid detection. Huntress has now enabled Tamper Protection on Managed EDR macOS agents to reduce the risk of an attacker bypassing EDR. This feature protects the macOS EDR agent, system extension, and other key Huntress files from being deleted, moved, or renamed, thus impacting agent visibility and performance. Like Tamper Protection on Windows endpoints, protection can be temporarily disabled for 4 hours through the Huntress Portal. This setting is found in the hamburger menu drop down > Settings > Tamper Protection > Tamper Protection Exclusions.