Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Other security for Windows, Mac, Linux
Harmony Endpoint Release Notes and Roadmaps
Message
<blockquote data-quote="Trident" data-source="post: 1090071" data-attributes="member: 99014"><p>Harmony Endpoint for Windows 88.40 (includes 88.31 as well which was very minor).</p><p></p><h2>List of New Features and Enhancements in E88.40 for Windows</h2><p></p><table style='width: 100%'><tr><td>ID</td><td>Description</td></tr><tr><td>General</td><td></td></tr><tr><td>EPS-56509</td><td>Enhancement: It is now possible to scan Active Directory using custom filters.</td></tr><tr><td>EPS-56288</td><td>Enhancement: SmartEndpoint is no longer required for configuring Tiny Agent deployment. All configuration can now be done in the Endpoint Web Management Console.</td></tr><tr><td>EPS-56353</td><td>Enhancement: The system now employs a more accurate language detection mechanism to automatically select the appropriate localized user interface language based on the Operating System default settings, providing a seamless experience without manual selection.</td></tr><tr><td>Anti-Bot and URL Filtering</td><td></td></tr><tr><td>AHTP-30168</td><td>Enhancement: Added the URLF Popups Suppression feature, which controls the frequency of URL Filtering popups for the same blocked URL.</td></tr><tr><td>Anti-Malware E2 (US-DHS and EU compliant)</td><td></td></tr><tr><td>AHTP-28942</td><td>Enhancement: Added integration with the Media Encryption Blade for scanning connected removable drives.</td></tr><tr><td>Anti-Ransomware, Behavioral Guard and Forensics</td><td></td></tr><tr><td>AHTP-30432</td><td>Enhancement: Enhanced the Threat Prevention methods against some types of attacks.</td></tr><tr><td>AHTP-30177</td><td>Enhancement: Improved visibility into processes attached to a debugger.</td></tr><tr><td>EPS-56438</td><td>Enhancement: Improved the honeypot files naming algorithm to enhance the security against targeted attacks.</td></tr><tr><td>AHTP-30575</td><td>Enhancement: Improved the efficiency of executing advanced threat signatures.</td></tr><tr><td>AHTP-29665</td><td>Enhancement: Improved visibility into files mounted from disc image or CD image.</td></tr><tr><td>Full Disk Encryption</td><td></td></tr><tr><td>EPS-55826</td><td>Enhancement: Added support for performing Mobile Enrollment from the Endpoint Security Client UI when using the FDE Smart Pre-boot (EA feature). If Smart Pre-boot features that require Mobile Login are enabled, users are now prompted to enroll their mobile devices for authentication purposes.</td></tr><tr><td>Media Encryption and Port Protection</td><td></td></tr><tr><td>EPS-56549</td><td>Enhancement: Added support for the Media Encryption and Port Protection Blade on systems running the ARM architecture.</td></tr><tr><td>EPS-55477</td><td>Enhancement: In Media Encryption authorization scanning, improved the dialog for Anti-Malware scanning progress.</td></tr><tr><td>Remote Access VPN</td><td></td></tr><tr><td>ESVPN-3189</td><td>Enhancement: Added ability to centrally manage the browser for authentication using Identity Provider from the <em>trac_client_1.ttm</em> file. Refer to <a href="https://support.checkpoint.com/results/sk/sk75221" target="_blank">sk75221</a>.</td></tr></table><h2></h2><h2>List of Resolved Issues in E88.40 for Windows</h2><p></p><p></p><table style='width: 100%'><tr><td>ID</td><td>Description</td></tr><tr><td>General</td><td></td></tr><tr><td>EPS-55056</td><td>There may be many redundant <em>vsdatant*.sys</em> files in the <em>%SystemRoot%\System32\Drivers</em> folder.</td></tr><tr><td>Installation</td><td></td></tr><tr><td>EPS-55713</td><td>In a rare scenario, an upgrade fails and the computer loses network connectivity.</td></tr><tr><td>Anti-Malware E1</td><td></td></tr><tr><td>EPS-56727</td><td>The Anti-Malware E1 engine may be still registered in Windows Security Center, although it was disabled using the Edit Capabilities option.</td></tr><tr><td>Anti-Ransomware, Behavioral Guard and Forensics</td><td></td></tr><tr><td>AHTP-30461</td><td>Because of a rare race condition, the CPSECHOST process may exit and generate a dump file.</td></tr><tr><td>AHTP-30510</td><td>Monitored Registry values are not represented correctly in the Forensics database.</td></tr><tr><td>EPS-54475</td><td>An Excel plugin may not work as expected while the Anti-Ransomware, Behavioral Guard and Forensics Blade is enabled.</td></tr><tr><td>AHTP-30401,<br /> AHTP-29854</td><td>Some Forensics reports/logs may have processes written as "unknown".</td></tr><tr><td>Firewall and Application Control</td><td></td></tr><tr><td>EPS-55915</td><td>After an upgrade, the Firewall and Application Control Blade may be displayed as not running because of a <em>vsdatant.sys</em> driver error.</td></tr></table><h2>List of Resolved Issues in E88.31 for Windows</h2><p></p><table style='width: 100%'><tr><td>ID</td><td>Description</td></tr><tr><td>General</td><td></td></tr><tr><td>EPS-56891</td><td>After an upgrade to E88.10, frequent reboot may occur.</td></tr><tr><td>Anti-Ransomware, Behavioral Guard and Forensics</td><td></td></tr><tr><td>AHTP-30620</td><td>PowerShell or .NET related scripts may fail.</td></tr><tr><td>AHTP-30676</td><td>Some processes specified through the Monitoring and Exclusions action in the Policy are not fully excluded by the Forensics component from analysis as intended.</td></tr><tr><td>AHTP-30757</td><td>Policy update may be blocked until a signature update or restart of the EFR service.</td></tr></table><p></p><p><span style="font-size: 22px">Threat Emulation Engine Update</span></p><table style='width: 100%'><tr><td>15 May 2024</td><td>11.17</td><td>60.990000740</td><td> <ul> <li data-xf-list-type="ul">Smart Console log Forensics fix for cloud/remote emulations.</li> <li data-xf-list-type="ul">Improved DLL Side loading advisor signatures</li> </ul> </td></tr></table><p></p><p><span style="font-size: 22px">The new DLL Sideloading detection engine:</span></p><p>[URL unfurl="true"]https://blog.checkpoint.com/security/how-threatcloud-ais-threat-emulation-engine-prevents-dll-sideloading-trojan-attacks/[/URL]</p></blockquote><p></p>
[QUOTE="Trident, post: 1090071, member: 99014"] Harmony Endpoint for Windows 88.40 (includes 88.31 as well which was very minor). [HEADING=1]List of New Features and Enhancements in E88.40 for Windows[/HEADING] [TABLE] [TR] [TD]ID[/TD] [TD]Description[/TD] [/TR] [TR] [TD]General[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-56509[/TD] [TD]Enhancement: It is now possible to scan Active Directory using custom filters.[/TD] [/TR] [TR] [TD]EPS-56288[/TD] [TD]Enhancement: SmartEndpoint is no longer required for configuring Tiny Agent deployment. All configuration can now be done in the Endpoint Web Management Console.[/TD] [/TR] [TR] [TD]EPS-56353[/TD] [TD]Enhancement: The system now employs a more accurate language detection mechanism to automatically select the appropriate localized user interface language based on the Operating System default settings, providing a seamless experience without manual selection.[/TD] [/TR] [TR] [TD]Anti-Bot and URL Filtering[/TD] [TD][/TD] [/TR] [TR] [TD]AHTP-30168[/TD] [TD]Enhancement: Added the URLF Popups Suppression feature, which controls the frequency of URL Filtering popups for the same blocked URL.[/TD] [/TR] [TR] [TD]Anti-Malware E2 (US-DHS and EU compliant)[/TD] [TD][/TD] [/TR] [TR] [TD]AHTP-28942[/TD] [TD]Enhancement: Added integration with the Media Encryption Blade for scanning connected removable drives.[/TD] [/TR] [TR] [TD]Anti-Ransomware, Behavioral Guard and Forensics[/TD] [TD][/TD] [/TR] [TR] [TD]AHTP-30432[/TD] [TD]Enhancement: Enhanced the Threat Prevention methods against some types of attacks.[/TD] [/TR] [TR] [TD]AHTP-30177[/TD] [TD]Enhancement: Improved visibility into processes attached to a debugger.[/TD] [/TR] [TR] [TD]EPS-56438[/TD] [TD]Enhancement: Improved the honeypot files naming algorithm to enhance the security against targeted attacks.[/TD] [/TR] [TR] [TD]AHTP-30575[/TD] [TD]Enhancement: Improved the efficiency of executing advanced threat signatures.[/TD] [/TR] [TR] [TD]AHTP-29665[/TD] [TD]Enhancement: Improved visibility into files mounted from disc image or CD image.[/TD] [/TR] [TR] [TD]Full Disk Encryption[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-55826[/TD] [TD]Enhancement: Added support for performing Mobile Enrollment from the Endpoint Security Client UI when using the FDE Smart Pre-boot (EA feature). If Smart Pre-boot features that require Mobile Login are enabled, users are now prompted to enroll their mobile devices for authentication purposes.[/TD] [/TR] [TR] [TD]Media Encryption and Port Protection[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-56549[/TD] [TD]Enhancement: Added support for the Media Encryption and Port Protection Blade on systems running the ARM architecture.[/TD] [/TR] [TR] [TD]EPS-55477[/TD] [TD]Enhancement: In Media Encryption authorization scanning, improved the dialog for Anti-Malware scanning progress.[/TD] [/TR] [TR] [TD]Remote Access VPN[/TD] [TD][/TD] [/TR] [TR] [TD]ESVPN-3189[/TD] [TD]Enhancement: Added ability to centrally manage the browser for authentication using Identity Provider from the [I]trac_client_1.ttm[/I] file. Refer to [URL='https://support.checkpoint.com/results/sk/sk75221']sk75221[/URL].[/TD] [/TR] [/TABLE] [HEADING=1][/HEADING] [HEADING=1]List of Resolved Issues in E88.40 for Windows[/HEADING] [TABLE] [TR] [TD]ID[/TD] [TD]Description[/TD] [/TR] [TR] [TD]General[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-55056[/TD] [TD]There may be many redundant [I]vsdatant*.sys[/I] files in the [I]%SystemRoot%\System32\Drivers[/I] folder.[/TD] [/TR] [TR] [TD]Installation[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-55713[/TD] [TD]In a rare scenario, an upgrade fails and the computer loses network connectivity.[/TD] [/TR] [TR] [TD]Anti-Malware E1[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-56727[/TD] [TD]The Anti-Malware E1 engine may be still registered in Windows Security Center, although it was disabled using the Edit Capabilities option.[/TD] [/TR] [TR] [TD]Anti-Ransomware, Behavioral Guard and Forensics[/TD] [TD][/TD] [/TR] [TR] [TD]AHTP-30461[/TD] [TD]Because of a rare race condition, the CPSECHOST process may exit and generate a dump file.[/TD] [/TR] [TR] [TD]AHTP-30510[/TD] [TD]Monitored Registry values are not represented correctly in the Forensics database.[/TD] [/TR] [TR] [TD]EPS-54475[/TD] [TD]An Excel plugin may not work as expected while the Anti-Ransomware, Behavioral Guard and Forensics Blade is enabled.[/TD] [/TR] [TR] [TD]AHTP-30401, AHTP-29854[/TD] [TD]Some Forensics reports/logs may have processes written as "unknown".[/TD] [/TR] [TR] [TD]Firewall and Application Control[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-55915[/TD] [TD]After an upgrade, the Firewall and Application Control Blade may be displayed as not running because of a [I]vsdatant.sys[/I] driver error.[/TD] [/TR] [/TABLE] [HEADING=1]List of Resolved Issues in E88.31 for Windows[/HEADING] [TABLE] [TR] [TD]ID[/TD] [TD]Description[/TD] [/TR] [TR] [TD]General[/TD] [TD][/TD] [/TR] [TR] [TD]EPS-56891[/TD] [TD]After an upgrade to E88.10, frequent reboot may occur.[/TD] [/TR] [TR] [TD]Anti-Ransomware, Behavioral Guard and Forensics[/TD] [TD][/TD] [/TR] [TR] [TD]AHTP-30620[/TD] [TD]PowerShell or .NET related scripts may fail.[/TD] [/TR] [TR] [TD]AHTP-30676[/TD] [TD]Some processes specified through the Monitoring and Exclusions action in the Policy are not fully excluded by the Forensics component from analysis as intended.[/TD] [/TR] [TR] [TD]AHTP-30757[/TD] [TD]Policy update may be blocked until a signature update or restart of the EFR service.[/TD] [/TR] [/TABLE] [SIZE=6]Threat Emulation Engine Update[/SIZE] [TABLE] [TR] [TD]15 May 2024[/TD] [TD]11.17[/TD] [TD]60.990000740[/TD] [TD][LIST] [*]Smart Console log Forensics fix for cloud/remote emulations. [*]Improved DLL Side loading advisor signatures [/LIST][/TD] [/TR] [/TABLE] [SIZE=6]The new DLL Sideloading detection engine:[/SIZE] [URL unfurl="true"]https://blog.checkpoint.com/security/how-threatcloud-ais-threat-emulation-engine-prevents-dll-sideloading-trojan-attacks/[/URL] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
