Improved
- We updated the commands used to search for Log4j and Spring vulnerabilities on Windows operating systems. These commands now use
fsutilto identify local file systems instead of a deprecated WMIC command. - We have adjusted our Prevention Engines for better context and clarity of an alert information by integrating the Data Encryption engine with the existing prevention engines. This will simplify the alerts context, reducing false positives, policy changes, and maintenance.
Fixed
- We fixed a bug that occurred when a Linux version contained the + character (such as 4.19.0+1) which caused some Insight Agent jobs to crash when attempting to identify the OS version.
- We fixed an issue with the Insight Agent's handling of security privilege token adjustment that caused Windows to generate an excessive number of 4703 Security Audit events.
Updated Operating System Support
- As of version 4.0.13, the Insight Agent supports Windows 11 24h2 (build 26100) on 64-bit and ARM64 architectures.
For the complete list of supported and unsupported operating systems, refer to our docs.