Product Announcements - Page 32

Hi All

A new GA SmartConsole (Build #98) for R80.30 was released today  (Replacing build #94) and is available for download.

Release Highlight:

• Added support for 1570R, 1600 and 1800 SMB Appliances.
• Added support for Threat Emulation blade on LSM profile of R80.20 SMB gateways and clusters.

For more info please refer to sk153153

Thanks,

Release Operation groups

Hi All

A new Ongoing Jumbo Hotfix Accumulator take for R81 (take 10) was released today,  and is available for download. Please refer to sk170114

Release Highlights

• Stability fixes
• Scalable Platforms GA! for more information refer to sk169954
• Web SmartConsole -  1^st release for Web SmartConsole, for more information, refer to sk170314.

Please note the following:

•        The new release is mentioned in  sk170114
•        The new releases will be published via CPUSE as a recommended version once it will be published as GA.
•        Availability:

o   Available to download the via sk170114

o   Available for download via CPUSE by using package identifier.

o  Can be provided by customer support

Content included in this take:

• List of resolved issue in this take can be found in sk170114

Thanks ,

Release Operation Group

Hi All

A new GA SmartConsole (Build #548) for R81 was released today  (Replacing build #547) and is available for download.

For more info please refer to sk170116

Thanks,

Release  Management groups

A new Ongoing Jumbo Hotfix Accumulator take for R80.10 (take 287) was released today,  and is available for download. Please refer to sk116380

Take Content:

• PRJ-18202 -  Added new certificates for Microsoft Azure. For details, refer to this Microsoft article.

Please note the following:

•        The new release is mentioned in  sk116380
•        The new releases will be published via CPUSE as a recommended version once it will be published as GA.
•        Availability:

o   Available to download the via sk116380

o   Available for download via CPUSE by using package identifier.

o   Can be provided by customer support

Important Note:

Thanks ,

Release Management Group

Hi All

R80.40 Jumbo HF Take #89 is now our GA take (replacing take 87) and is available for download to all via CPUSE (as recommended) and via sk165456.

Content included in this take

• PRJ-18199 - Added new certificates for Microsoft Azure. For details, refer to this Microsoft article.

Thanks,

Release Management groups

Hi All,

A new Ongoing Jumbo Hotfix Accumulator take for R80.20 (take 188) was released today,  and is available for download. Please refer to sk137592

 Please note the following:

•        The new release is mentioned in  sk137592
•        The new releases will be published via CPUSE as a recommended version once it will be published as GA.
•        Availability:

o   Available to download the via sk137592

o   Available for download via CPUSE by using package identifier.

o   Can be provided by customer support

Content included in this take

• PRJ-20083 - Added new certificates for Microsoft Azure. For details, refer to this Microsoft article.

Thanks ,

Release Management Group

Hi All

R80.30 Jumbo HF Take #226 is now our GA take (replacing take 219) and is available for download to all via CPUSE (as recommended) and via sk153152.

Release Content:

• PRJ-19494/ PRJ-19675 - In a rare scenario, certain conditions under VPN utilization may cause the Security gateway to crash.
• PRJ-18200/ PMTR-60885 -Added new certificates for Microsoft Azure. For details, refer to this Microsoft article.
  • Note! For Azure customers, we recommend to upgrade to Jumbo Hotfix Take 226 due to Microsoft certificate change

Important Note:

Customers who have the conflict validation errors while upgrading to newer Jumbo Takes, should install Deployment Agent build 1999 or higher (refer to sk92449).

Note: the issue resolved by this DA is only relevant for Jumbo upgrades ( JHF take X--> JHF take Y) ; other conflict validation errors should be investigated.

Thanks,

Release Management groups

A new Ongoing Jumbo Hotfix Accumulator take for R80.30 (Take 226) was released today, updating take 221 and is available for download. Please refer to sk153152

Please note the following:

•        The new release is mentioned in  sk153152
•        The new releases will be published via CPUSE as a recommended version once it will be published as GA.
•        Availability:

o   Available to download the via sk153152

o   Available for download via CPUSE by using package identifier.

o   Can be provided by customer support

Content included in this take

• PRJ-19494 - In a rare scenario, certain conditions under VPN utilization may cause the Security gateway to crash
• PRJ-18200 - Added new certificates for Microsoft Azure. For details, refer to this Microsoft article.

Thanks,

Release Management Group

What's New in E84.30 for macOS

New Features

• Support for the Endpoint Security Clients on macOS Big Sur (11).

• Machine Authentication for the VPN client. It allows to perform VPN authentication with a machine certificate from the system keychain of the macOS. Machine Authentication works in user and machine authentication mode, which is a combination of a machine certificate and the selected user authentication method.

Enhancements

• This release includes stability, quality and performance fixes.

More details and download from sk170513.

Check Point Endpoint Security Client / SandBlast Agent E84.10 for Windows is now available as GA (General Availability).

What's New:

New Features

• ThreatHunting
  • The E84.10 release introduces Threat Hunting, an investigative tool to collect all events from endpoints. This allows an Endpoint Security administrator to get the full scope of an attack, or to uncover stealth attacks. Threat Hunting also provides Security administrators with multiple manual remediation options, such as Quarantine, KillProcess and Forensics Analysis with remediation.
    Threat Hunting on-boarding instructions are available in sk170052
• Anti-Malware
  • Anti-Malware can download signatures from an authenticated NTLM proxy with a logged in user's credentials.
  • The Anti-malware blade can now work in "Detect only" mode. See sk169753.
• VPN
  • The E84.10 release adds the ability to display relevant certificates only during user authentication. See sk169453.
  • Adds the ability to disable client shutdowns through the Windows tray icon menu. See sk75221.
  • Adds the ability to define the site display name when you create a new VPN site with the trac.exe command line utility.
• Infrastructure
  • Endpoint Security can now connect to the Management server from an authenticated NTLM proxy with a logged in user's credentials.

Enhancements 

• Anti-Malware
  • Resolves a possible issue where Anti-Malware and UI processes crash during a machine shutdown. 
  • Resolves a possible issue where the current Anti-Malware process crashes as Endpoint Security Client upgrades.
• Anti-Ransomware, Behavioral Guard and Forensics
  • Fixes a Local Privilege Escalation vulnerability that relates to the Anti-Ransomware file restoration process.
  • Fixes a vulnerability that can allow arbitrary file deletions when files restore in Anti-Ransomware.
  • Fixes a very rare issue that can cause an upgrade to fail when it does not delete Anti-Ransomware related files.
  • Fixes an Anti-Ransomware False Positive from a Java installation.
  • Fixes an issue where only the first trigger information was correct among multiple LNK file related triggers in Behavioral Guard.
  • Reduces the likelihood that Forensics quarantines user documents and files from False Positives on Windows Servers.
  • Fixes a rare issue that can cause permanent high CPU usage while Forensics monitors specific API calls.
  • Fixes a rare race condition that can cause Forensics to use the default policy instead of the latest installed policy.
  • Fixes a crash that can occur in injected processes if Forensics receives multiple monitored API events within a short period of time.
  • Forensics can now parse and process Spanish Symantec triggers. 
• Full Disk Encryption
  • Allows BitLocker Management to install on hardware RAID disks.
  • Adds the ability to use high resolution custom images in the FDE pre-boot. 
  • Adds support for disk sectors larger than 512 bytes in FDE.
• Installation
  • CVE-2020-6015: Resolves a denial of service vulnerability in releases before E84.10 to prevent the storage of service log files in non-standard locations. This is relevant to clean installs only.  Customers with completed installations of Endpoint Security are not vulnerable. 
  • Resolves a possible issue where a clean install with dynamic package fails due to a missing selected .NET framework.
  • Resolves a possible issue where the "Upgrade Time Change" popup does not appear after upgrades fail. 
  • Resolves a possible issue where no lock icon displays in the system tray after Endpoint Security Client fails to upgrade.
  • Resolves a possible issue where some Anti-Malware driver leftovers remain after an Endpoint Security Client uninstall. 
  • Resolves a possible issue where an Endpoint upgrade fails when it tries to remove an existing version of the product. 
  • Resolves a possible issue where the Endpoint uninstall fails as it tries to upgrade itself with a software deployment rule. 
  • Improves the upgrade performance for Forensics blade installations.
• Infrastructure
  • Endpoint Security Client now ensures that blade logs and additional information go to the same policy server.
  • Resolves an issue where the Shutdown command does not execute from SmartEndpoint if a user on a client system does not have permission to perform a shutdown.

See sk170117 for more information on the E84.10 release.