About protection of financial transactions and online purchases

To protect confidential data that you enter on websites of banks and payment systems (such as bank card numbers and passwords for online banking), as well as to prevent funds from being stolen when you make online payments, Kaspersky Small Office Security prompts you to open such websites in Protected Browser.

Protected Browser is a special browser operating mode designed to protect your data as you access bank or payment system websites. Protected Browser is started in an isolated environment to prevent other applications from injecting their code into the process of Protected Browser. Kaspersky Small Office Security creates special profiles for the Mozilla Firefox and Google Chrome browsers to prevent third-party add-ons from affecting the operation of Protected Browser. The application does not affect your data that the browsers may save in the profiles created for them.

If you are using the Google Chrome, Mozilla Firefox, or Internet Explorer browsers, Protected Browser is opened in a new window. Microsoft Edge browser automatically switches to Protected Browser mode when you visit websites of banks and payment systems.

The application uses the Kaspersky Protection extension to provide a number of Protected Browser functions.

Browsers that do not meet the software requirements cannot operate in Protected Browser mode. Instead of such browsers, either Internet Explorer or another browser configured in application settings starts in Protected Browser mode.

After installing Kaspersky Small Office Security, you must restart the computer before Microsoft Edge can operate in Protected Browser mode.

It is impossible to run Protected Browser under the following conditions:

• The Enable Self-Defense check box is cleared in the Self-Defense subsection of the Advanced Settings section in the application settings window.
  

  This check box enables / disables a mechanism of Kaspersky Small Office Security that protects the application against modification or deletion of its files from the hard drive, memory processes, and system registry entries.

  If this check box is selected, the ability to perform external control of the system service is also disabled. When external control of the system service is disabled, Kaspersky Small Office Security blocks all attempts to perform remote management of application services. If an attempt to manage the application remotely is detected, a notification appears above the Kaspersky Small Office Security icon in the Microsoft® Windows® taskbar notification area (if notifications are not disabled).

• JavaScript is disabled in the browser.

Protected Browser capabilities

In Protected Browser mode, the application provides protection against the following types of threats:

• Untrusted modules. The application runs a check for untrusted modules every time you visit a bank or payment system website.
• Rootkits. The application scans for rootkits at Protected Browser startup.
• Known operating system vulnerabilities. The application scans for operating system vulnerabilities at Protected Browser startup.
• Invalid certificates of bank or payment system websites. The application checks certificates when you visit a bank or payment system website. The check is performed against a database of compromised certificates.

Protected Browser status

When you open a website in Protected Browser, a frame appears on the borders of the browser window. The color of the frame indicates the protection status.

The frame of the browser window can display the following color indications:

• Green frame. Signifies that all checks have been performed successfully. You can continue using Protected Browser.
• Yellow frame. Signifies that checks have revealed security problems that need to be resolved.

  The application can detect the following threats and security problems:

  • Untrusted module. Computer scanning and disinfection is required.
  • Rootkit. Computer scanning and disinfection is required.
  • Operating system vulnerability. Operating system updates need to be installed.
  • Invalid certificate of a bank or payment system website.

  If you do not eliminate the threats detected, the security of the bank or payment system website connection session is not guaranteed. Events involving the launch and use of Protected Browser with reduced protection are recorded in the Windows event log.

About protection against screenshots

To protect your data when you browse protected websites, Kaspersky Small Office Security prevents spyware from taking unauthorized screenshots. Protection against screenshots is enabled by default. Protection against screenshots is running even if hardware virtualization is disabled.

About clipboard data protection

Kaspersky Small Office Security blocks unauthorized access by applications to the clipboard when you make online payments, thus preventing theft of data by criminals. Such blocking is active only if an untrusted application attempts to obtain unauthorized access to your clipboard. If you copy data manually from the window of an application to another application's window (for example, from Notepad to a text editor window), access to clipboard is allowed. If the Internet Explorer® browser opened in regular mode is the source of data being copied, only data from the browser address field can be copied to clipboard.

Clipboard protection is not running if hardware virtualization is disabled on your computer.