What's New
|
New Features and Enhancements |
|---|
|
E87.62 - Released on 15 November 2023 |
|
NEW: Added support for Endpoint Security on Windows 11 version 23H2. |
|
Enhancement: Improved the ability to detect and prevent generic reverse shell attacks. |
|
E87.60 - Released on 8 November 2023 |
|
NEW: Added a Passwordless Pre-boot feature for FDE Smart Pre-boot. Users register their mobile devices for pre-boot login, eliminating the need for entering a password. The feature is available for EA customers (Early Availability). |
|
NEW: Added ARM platform support for Check Point Mobile and SecuRemote flavors. |
|
Enhancement: Security improvements on the process-to-process communication layer. |
|
Enhancement: Posture Management now shows a detailed status for each patch entry. |
|
Enhancement: Changed the order of columns in Remediation Management UI. |
|
Enhancement: Added support for Threat Emulation Blade for these file types: one, esf, XAR. Requires additional configuration in Policy > Web & Files Protection > Advanced Settings > Threat Emulation > Edit. |
|
Enhancement: Added support Skips scanning of archive file formats (for example, .zip, 7zip, tar.gz, rar, etc.) and non-executable files (files without the execute permission) on Anti-Malware DHS compliant engine. |
|
Enhancement: Added ability to run scheduled scans only when the machine is idle. The scheduled scan will be delayed until the device is idle, with a maximum postponement of 24 hours. After this period, the scan will proceed, regardless of the device activity status. |
|
Enhancement: Implemented a reputation service for files and integrated cloud technologies to enhance the precision of file scanning and monitoring. |
|
Enhancement: The Anti-Malware E1 license will now be automatically updated from the web-based Checkpoint content delivery network (CDN). |
|
Enhancement: Anti-Malware E1 engine will now reflect additional statuses. Refer to Harmony Endpoint Web Management R81.20 Administration Guide > Viewing Computer Information > Asset Management. |
|
Enhancement: Improved honeypot generation mechanism to disallow the creation of multiple honeypot documents when using folder redirection. |
|
E87.52 - Released on 19 November 2023 |
|
This Hotfix complements the E87.51 release with important fixes. If you installed E87.51, we recommend upgrading to E87.52. |
|
E87.51 - Released on 30 October 2023 |
|
This Hotfix complements the E87.50 release with important fixes. If you installed E87.50, we recommend upgrading to E87.51. |
|
E87.50 - Released on 5 September 2023 |
|
NEW: Endpoint Client now supports Posture Management (Vulnerability & Patch Management) for GA customers. |
|
NEW: Added a new feature - SmartExclusion. It is available for EA customers (Early Availability). |
|
NEW: Endpoint Security Client now has the "Upgrade now" button added to mini-UI, appearing when the installation is postponed. |
|
Enhancement: In Forensics report > Remediation tab > Registry key, the names of columns were renamed:
|
|
Enhancement: Improved the performance when handling network files. |
|
Enhancement: It is now possible to install the clients on Windows 11 with enabled Smart App Control when, during installation, the computer is connected to the Internet. Previously, the installation on such computers was blocked. |
|
Enhancement: Improved protections against evasion techniques. |
|
Enhancement: Added support for the "Prohibit cancel scan if more than" option on Anti-Malware DHS compliant engine. Admin can prohibit the users from canceling a scheduled scan if more than X days passed since the last scan. |
|
E87.41 - Released on 10 August 2023 |
|
Enhancement: The "smart preboot" option is now available for Early Availability (EA) customers in the General Policy settings. |
|
Enhancement: Added the "smart preboot" menu translation in all supported languages for Early Availability (EA) customers. |
|
Enhancement: Added ability to customize the Full Disk Encryption (FDE) Pre-boot UI from the policy. |
|
Enhancement: Improved FDE password synchronization between the client and Server. |
|
Enhancement: Improved Media Encryption Offline utility. During the first use of the tool, it is necessary to run it as an administrator to install the required drivers. After that, the tool no longer requires running as an administrator. |
|
Enhancement: Significantly reduced the rate of false-positive detections due to legitimate backup software and file-copy operations in the honeypot folder. It is also possible to roll back to the previous signature update method. |
|
Enhancement: The monthly update will now include only the variance between the most recent signatures package and the one currently installed on the computer with the client. This will decrease the size of an update from around 200MB to 4-6MB. |
|
Enhancement: Clients with the E2 Anti-Malware engine can now update the signature and the engine on computers not connected to the internet. Refer to sk180690. |
|
Enhancement: The E2 logs are now separated from the Threat Emulation log and printed in a new file named AntiMalwareE2.log. |
|
Enhancement: Endpoint Client Posture Management supports the automatic installation of patches from the Server. |
|
E87.31 - Released on 19 July 2023 |
|
This Hotfix complements the E87.30 release with important fixes. If you installed E87.30, we recommend upgrading to E87.31. |
|
E87.30 - Released on 9 May 2023 |
|
NEW: Added Low Memory Mode, which reduces memory consumption. Note that this mode may change the security level because it is based on a smaller amount of signatures. |
|
NEW: Added Built-in Help to the client UI. |
|
NEW: Added Client Demo and Health Check. The client will open the default browser on a page with various tests for client protections. |
|
Enhancement: Client notifications are now adapted to high resolution monitors. |
|
Enhancement: It is now possible to configure the Anti-Malware "Scan On Idle" feature via Endpoint Management. |
|
Enhancement: Endpoint Client Posture Management support for on-demand installation of patches from the Server is now available for Early Availability (EA) customers. |
|
Enhancement: Improved interoperability with cloud drives (in Endpoint Security client) and improved handling of exceptions for trusted processes in the Authorization scanning feature. Refer to sk109293. |
|
Enhancement: Windows update will now be blocked when the firmware boots the computer incorrectly. This prevents Full Disk Encryption blade from crashing during the OS update. |
|
E87.20 - Released on 8 March 2023 |
|
Enhancement: Added File Action push operations which allow to copy, move folders on endpoint computers. Refer to Harmony Endpoint Administration Guide > Performing Push Operations. |
|
Enhancement: Applied Server Profiles will now be shown in the Policies view of Endpoint Client UI. |
|
Enhancement: Endpoint Security Client will now automatically disable Windows Defender Firewall during installation on Windows Servers. |
|
Enhancement: Improved protections against AMSI (Anti-Malware Scan Interface) Bypass. |
|
Enhancement: Forensics blade will now update management about the status of sending information to Threat Hunting. |
|
Enhancement: In Compliance blade, added support for Windows 11, Windows Server 2019 and Windows Server 2022. |
|
E87.10 - Released on 25 January 2023 |
|
NEW: Vulnerability Management capability is now available for EA customers. It reduces the attack surface through accurate assessment of vulnerabilities, risky applications, and computers within the organization |
|
Enhancement: Admins can now force pinning of the Endpoint Security browser extension in Chromium-based browsers (Chrome, Edge and Brave). |
|
Enhancement: Owner settings are now available under Advanced settings > Advanced Encryption. |
|
Enhancement: The "Allow user to change the size of encrypted media" option is now available under Advanced settings > Advanced Encryption. |
|
Enhancement: The "Allow user to change the file system of the encrypted storage" option is now available under Advanced settings > Advanced Encryption. |
|
E87.00 - Released on 14 December 2022 |
|
NEW: Added support for Endpoint Security on Windows 10 version 22H2 as a GA (General Availability) version. |
|
NEW: Endpoint Security Client is now integrated with Intel Threat Detection Technology to improve the Ransomware detection capabilities. |
|
Enhancement: Added support for Detect mode in Department of Homeland Security (DHS) Compliant Anti-Malware Blade. |
|
Enhancement: Severity of the "Scan Stop" and "Scan Start" events is changed to "Informational". |
|
Enhancement: Added the ability to configure the Visual Impaired support in pre-boot via policy setting. |
|
Enhancement: On a Client with FDE installed, there is now an additional way of turning off the PS/2 keyboard controller. It can now be done in Windows with the fdecontrol.exe tool as described as "Method 3" in sk180154. |
|
Enhancement: Removed RemediationService.exe. All Remediation functionality is kept, but it will not be running as a separate Service. |
|
Enhancement: Improved startup performance in an environment with an extensive topology (10K routes and more). |