Configure Tamper Protection and Software Updates options in Malwarebytes Cloud Platform

Document created by bgoddard Employee on Oct 23, 2019Last modified by bgoddard Employee on Nov 8, 2019
Version 7Show Document
  • View in full screen mode

Policies define how Malwarebytes behaves when running a scheduled scan, using Real-Time Protection, or monitoring Suspicious Activity. Policies are applied at the group level, and all endpoints in a group use the same policy. By default, endpoints added to the console belong to the Default Group, and the Default Policy. 


Policies are customizable and have many options. This article covers policy options for:

  • Tamper Protection
  • Software Updates


Tamper Protection

Tamper Protection keeps endpoints protected by limiting end user ability to uninstall Malwarebytes software.


  • Require Uninstall Password (Windows only): Stops all endpoint users from uninstalling Malwarebytes agent software by requiring a separate uninstall password. When enabled, you are prompted to create a Tamper Protection password. Endpoint users who attempt to uninstall the endpoint agent cannot proceed without this password.

    Note: This feature does not support Windows XP endpoints.


Software Updates

Software Updates allows control over when endpoints receive Malwarebytes application updates. These settings do not affect Malwarebytes Protection Updates.


  • Pause Software Updates (Windows only): Stops software updates from being applied on endpoints for up to 31 days. After 31 days, endpoints resume receiving software updates when they are released. When enabled, the policy screen shows the date and time when updates will continue.


See also



Return to the Malwarebytes Cloud Platform Administrator Guide