Learn about the current and previous Endpoint Protector updates. Information regarding changes and enhancements is detailed in chronological order below.
Endpoint Protector – Product Update
Server Version 220.127.116.11
Windows Client: 18.104.22.168
Mac Client: 22.214.171.124
Linux Client: 126.96.36.199
EasyLock Client: 188.8.131.52
Server Version: 184.108.40.206
- Deep Packet Inspection has been extended also to Windows and Linux endpoints.
- Monitoring confidential file transfers to printers has been extended for macOS and Linux endpoints.
- The Windows apps granularity has been extended.
- The option to enable Two-Factor Authentication for all Administrators is now available.
- Several small user experience improvements have been made, like adding extra info, tool tips, etc.
- The Extended Source Code Detection functionality has been added, allowing for a better tuning of the detection rules and avoiding false positives when source code does not need to be detected.
- Logs sent to a SIEM now also include a unique identifier in a form of a hash.
- Several security improvements have been made, mainly linked to Cross Site Scripting.
- Added an additional column to the downloaded List of Administrators, specifying if these were imported from AD and if they are using those credentials to login or not.
- Completely removing some details from existing Administrators (i.e.: e-mail address or first name) is now possible.
- Audit Log Backup has been extended, providing more granularity when choosing what logs to audit (older than 2 months, 3 months, etc.).
- Improved DPI functionality for Macs when E-mail Domain Whitelists are used in combination with Office 365.
- When the maximum number of Blacklists or Whitelists was reached, their content could not be edited. Fixed.
- Importing content for some Blacklists or Whitelists that included empty lines could result in no items being imported. Fixed.
- Fixed UI inconsistencies where the “&” character would be replaced with “amp”, in some sections.
- Depending on the ACL roles, regardless of the managed departments, some administrators could see all Online Computers. Fixed.
- Too many logs regarding the percentage of the Licensing usage were being sent to the SIEM server. Fixed.
- Several other small bug fixes.
- AD Synchronization fixes linked to Advanced Filters and AD Groups that include special characters.
- The Computer information now includes also the Main MAC Address, as well as a MAC Address List.
- The rights granularity has been extended and device rights can now be set for more restrictive scenarios: on a specific device, on a specific computer, for a specific user. This can be achieved from the Computers or Users sections.
- Improved behavior on some old laptop modules where Serial ATA Controllers were not recognized.
- Improved validation around Device Name, VID, PID and Serial Number combination, for a better experience and easier management of devices with the same name.
- Improved detection for some Xiaomi devices.
- For the Specific Devices section, when pressing the back button, some devices could remain selected. Fixed.
- Random Serial Number (e.g.: adcdefg1234567) could always be set in Custom Class when adding a new device or when adding a Serial Number range. Fixed.
- The Device Code for Apple MacBook Air SuperDrive could change when connected to different computers. Fixed.
- Some settings made on Computer level could influence the inherited, globally set, Transfer Limit. Fixed.
Content Aware Protection
- Monitoring confidential file transfers via web browsers and tracking the exact upload destination (the specific domain and not just the transfer application), is now available for Windows. This functionality requires Deep Packet Inspection to be enabled.
- Monitoring confidential file transfers in the e-mail body is now available for Windows, without having to use the Outlook add-on. This functionality requires Deep Packet Inspection to be enabled.
- Domain and URL Blacklists are now available for Windows, allowing the option to block access to certain domains and URLs.
- Monitoring confidential file transfers via web browsers and tracking the exact upload destination (the specific domain and not just the transfer application), is now available for Linux. This functionality requires Deep Packet Inspection to be enabled.
- Monitoring confidential file transfers in the e-mail body is now available for Linux. This functionality requires Deep Packet Inspection to be enabled.
- Domain and URL Blacklists are now available for Linux, allowing the option to block access to certain domains and URLs.
- The Windows apps granularity has been extended, both in functionality and number of controlled apps and, now includes Edge, Skype, Windows Mail, Facebook Messenger, OneDrive, WhatsApp Desktop, Dropbox, Evernote.
- Additional PIIs have been added, including Canada address, US Driving Licenses for 10 States and Tax ID India.
- Additional File Types have been added, including MKV, PGP and 7z password protected.
- Additional applications such as WinSCP (Linux), Rocket Chat (Windows and Mac), SmarTTY (Windows) are now controlled.
- Improved validation on Threat Threshold.
- Improved source code detection within Outlook e-mail body.
- PDF text extraction improvement in files containing special East-Asian (e.g.: Korean).
- For printing events, the content detection was improved.
- Improved network interfaces detection when using the DPI functionality for Mac.
- Improved file type detection in multipart transfers when using the DPI functionality for Mac.
- Improved Maestro card detection.
- Transfer Limit has been extended to include file transfers through EasyLock.
- Fixed some inconsistencies linked to users being checked or unchecked in policies, for computers with multiple users.
- Print Screen actions could be blocked even if the Content Aware Policy was set Report Only. Fixed.
- eDiscovery Dashboards are now available (for systems on Subscription licensing).
- Filtering eDiscovery Policies by Policy Name could result in a loading overlay and the table will not reload. Fixed.
EasyLock Enforced Encryption
- Small improvements to complex passwords validations.
- The option to search on the EasyLock encrypted partition is now available.
- The user experience when using “Allow Access if TD Level 1+, otherwise Read Only” has been improved with a simple pop-up at plugin, continuing as Read Only or using EasyLock.
- Canceling a file copy action at a specific point would result in some storage space being reserved for it. Fixed.
- Fixed missing EasyLock prompt when its deployment was done manually and, correlated with the Allow Access and exclude from CAP Scanning right.