PRODUCT UPDATE BULLETIN 17.1 - November 7th 2013
http://sw.nohold.net/Webroot/Images/wsab_endpoint_logo.pngRelease 17.2 follows releases 17 & 17.1, which offered many management console enhancements and basic support for Apple Mac devices. This next release features the brand new 2014 user endpoint GUI, new protection features, and some very important additions to the console that will simplify the detection of a threat on multiple PCs, as well as allow the easy deactivation of redundant endpoint Agents.
- NEW – 2014 Agent – Updates to the Agent GUI to the new 2014 version that offers a far simpler user interface design and many other Agent enhancements.
- NEW – Infrared Shield & Settings – A new multi-layer defense which incorporates several key components of the Webroot Intelligence Network to block new threats very early in their lifecycle, often before Webroot Threat Researchers have even seen a single sample.
- NEW – Scan Settings – The option to detect Potentially Unwanted Applications (PUAs) and designate them as being malicious files.
- NEW – Pop-Up Threat Window – Identifying propagation of the same threat within your endpoints.
- NEW – Agent Deactivation – Allowing Administrators to easily deactivate Agents not seen from the license count.
- NEW – 2014 Agent
The new 2014 user Agent introduces many enhancements, including a much cleaner and simpler GUI (graphical user interface), the inclusion of the new Infrared Shield, and much better threat detection of non-portable execution files like VBScripts. Together, these improvements significantly advance overall endpoint protection.
http://sw.nohold.net/Webroot/Images/wsa2014endpoints.png
New 2014 Agent User Interface
- NEW – Infrared Shield & Settings
Infrared is a unique multi-layer defense shield that incorporates several components from within the Webroot Intelligence Network to immediately block threats early on in their lifecycle – often before Webroot’s Threat Researchers have even seen a sample. This is achieved through a number of threat intelligence “engines” working together to enhance the overall protection of every endpoint.
Another layer of Infrared is its interpretation of user behavior and overall assessment of the safety level of the user. If a user is classified as a higher risk, the heuristics and background processing are dynamically turned to increase their effectiveness for that individual user, while preventing false positives for other “less risky” users.
The new Infrared Shield is now also supported within the Policy section of the management console.
- NEW – PUP Scan Settings
This new configuration setting has been added to the new 2014 Agent to enable the detection of Potentially Unwanted Applications (PUAs). These are applications that, while not malicious themselves, are generally considered undesirable within business networks. PUAs are application hidden in the license agreements, or Terms & Conditions, when new software or data is downloaded. Because of this, users end up with a computer full of programs they don’t want or need.
- NEW – Threat Propagation View
This console enhancement displays all the endpoints that have seen the same threat (based on the MD5 values the Agent creates) to help Administrators immediately understand the propagation of any new threats (like worms) and their spread within the network.
Simply by clicking on the button “Show All PCs that have encountered this file” generates a pop-up window that displays all of the endpoints that have seen this particular threat. This makes managing such situations faster, simpler, and a lot easier than before.
http://sw.nohold.net/Webroot/Images/newthreatpua.png
A New Threat Appears on a Single Endpoint
http://sw.nohold.net/Webroot/Images/showallpcsbutton.png
Clicking the "Show All PCs" Button Pups-up a New Window Showing All Threatened Endpoints
- NEW – Agent Deactivation
Directly accessible from the Status tab screen, an Administrator may now launch the “Endpoints Activity” panel and see any Agents not seen within a pre-determined time frame. Then the Administrator can select single or multiple Agents from the list and click the “Deactivate” button.
This makes it much easier to deactivate and remove redundant Agents from the license count that have not been seen or are considered to be “inactive.”
http://sw.nohold.net/Webroot/Images/deactivateoldendpointslist.png
Easily Deactivate Single or Multiple Agent Licenses