Advance Notice: Update for AV Defender 6.6.100.397 scheduled for Wednesday August 25th

Please be advised we will be pushing an update to activated N-central servers as of Wednesday August 25th for AV Defender (6.6.100.397). This will be available for updates at this time. Release Notes will be available on the Community Resource Center following publication.

AV Defender Version 6.6.100.397

The AV Defender 6.6.100.397 is available for Windows modern Operating Systems, designed for Windows 7/Windows Server 2008R2 and higher.

Enhancements

This release is a unique release initiated by updating with 6.6.100.397. This release will trigger a silent update directly to the new Managed Antivirus AV Defender (AVD) version 7 series resulting in version 7.2.1.72. No reboot is anticipated for this update.  Users should experience no disruptions and no action is required.

Please be reminded that Managed Antivirus AV Defender (AVD) version 7 will NOT be eligible for Windows 7 installations that have not secured the Extended Security Updates. Microsoft is changing the way executables can be signed, it will no longer be possible to be signed with SHA1. Any Windows 7 installations that have not applied SP1 should consider the following Microsoft articles:

1) https://support.microsoft.com/en-us/topic/sha-2-code-signing-support-update-for-windows[…]008-september-23-2019-84a8aad5-d8d9-2d5c-6d78-34f9aa5f8339

2)  https://support.microsoft.com/en-us/topic/update-for-universal-c-runtime-in-windows-c0514201-7fe6-95a3-b0a5-287930f3560c

Devices without these in place will NOT be able to update/upgrade or install to any subsequent versions of AV Defender.

The following issues were fixed in this build:

  • The product blocked a website with an untrusted certificate, while not providing the Accept Risks and proceed option.
  • The Content Control module failed to block some apps that didn’t match the allowed rules.
  • The Content Control module did not display a proper Back action button in the Power User graphic user interface.
  • Application Control – Some applications could be opened at login time even if Application Control was configured to block them
  • Advanced Threat Control – Enabling the Ransomware Mitigation feature detemined a system slowdown when trying to save Excel files on a file server.
  • Volume Encryption: In a certain scenarios, the Volume Encryption module maintained the Bitlocker feature suspended.
  • Firewall – A memory leak from the Firewall module generated a RAM usage increase
  • Fixed an issue where the Custom Scan Options could not be reconfigured
  • The Content Control module caused a slowdown in the file download speed for a copy/paste action in network shares
  • Content Control incorrectly blocked an application with a process name similar to another blacklisted application
  • The Content Control module allowed access to an online radio stream on a Windows 10 virtual machine, even if the page appeared to be blocked from the User Control rules.
  • Fixed SCOM issues caused by an interaction between the Advanced Threat Control module and WMI.
  • In some cases, the Advanced Threat Control module caused critical errors (BSOD)
  • Advanced Threat Control has now multiple detection heuristics or the recently disclosed “Print Nightmare” vulnerability.

Updating to this Release
The AV Defender update can be scheduled at an appropriate time by adding a maintenance window to your devices. Updating involves an incremental update of components or modules without the need to remove protection. The device will be rebooted after the update if the maintenance window allows AV Defender Reboots. A reboot may be required based on Installation Status. If you do not want updates or reboots to proceed automatically, you can disable them by removing the appropriate maintenance windows from the device or rule.

 

This entry was posted in N-sight. Bookmark the permalink.