We recently released SandBlast Agent E82.10!
E82.10 introduces mainly stability and quality improvements.
The complete list of improvements can be found in the version release’s Secure Knowledge sk163578
Support for Windows 10 19H2
Microsoft released Windows 10’s November 2019 Update, codenamed 19H2, on November 12. Also known as Windows 10 version 1909
SandBlast Agent E82.10 is supported on that release Windows 10 19H2.
Main Fixes and enhancements
Threat prevention and Anti-Malware
- Fixes an issue where symbolic links with Anti-Ransomware honeypot restoration may allow Denial of Service attacks.
- Older Anti-Ransomware honeypots are now deleted on upgrades.
- Fixes an issue where Anti-Ransomware honeypots are not created on newer locations like program data and app data, when upgrading from an earlier version of the product.
- Fixes an Anti-Ransomware False Positive that can occur due to the VMware Horizon Persona Management application.
- Improves performance of the injection sensor when many processes are launched in a short period of time.
- Fixes an issue that may cause the Forensics Analysis to include benign processes when NVIDIA processes are launched prior to the Logon screen appearing.
- Fixes an issue where the entire Forensic incident is not analyzed if it involves the use of NTFS Alternate Data Streams.
- Fixes an issue where some IPv6 addresses are not correctly identified as internal IPs for the RDP Brute Force detection in Behavioral Guard.
- Fixes an issue where the Endpoint Security client upgrade fails because the Anti-Malware process fails to unload.
- Fixes an issue for sites blocked by Anti-Malware web protection.
- Fixes an issue where Endpoint Security significantly slows the Kaspersky Endpoint Protection upgrade process.
Data and access protection
- Fixes an issue when the Compliance blade fails to detect the McAfee Endpoint Security running status, if no user is logged in.
- Fixes an issue where Media Encryption and Port Protection does not update the Offline Data Access utility on an encrypted removable media.
- Fixes a rare issue where an FDE process crashes when switching from BitLocker Management to FDE.
- Includes stability and quality fixes. Supports all the features of previous releases.
- Improves the log mechanism. Logs will stay on the machine for a longer time.
- Includes performance improvements with large scale topology.
General
- The initial connection to the server does not require the Endpoint Security Client to be connected to the domain controller.
- Fixes an issue for the Endpoint Security Client to report its name to display accurately in Deployment reports of SmartEndpoint.
- Fixes a rare case of BSOD that may happen during an arbitrary process creation.
Best
Ami.B