Version 9.6.1
New Features
Detection Improvements
- LLAM-9126: Improved detection for SessionManager backdoor.
- LLAM-8911: Improved detection for AvosLocker family Linux-variant.
- LLAM-8663: Improved detection of Cyclops Blink ELF trojan.
- LLAM-9140: Improved detection of RedAlert ransomware
Bug Fixes and Improvements
- PLTF-3272: Fixed upgrade failure from release 9.5.1 or older, caused by unsatisfied dependencies of the "tllod-storage" package.
- LLANTA-2492: Fixed a missing package dependency declaration that in some cases could lead to an installation failure for data nodes.
- LLANTA-2533: Fixed a bug in the handling of certificate bundles that prevented parts of the NTA component to run.
Deprecation of API Methods
No additional API methods are being deprecated or discontinued in this release.
The Lastline API documentation includes a deprecation schedule for methods in the legacy API, as well as information on how to replace usage of these deprecated methods with supported methods.
Released Appliance Versions
As part of this release, we are making available the following versions of Lastline appliances for use with Lastline Enterprise On-Premises:
- Lastline Manager version 1130.1
- Lastline Engine version 1130.1
- Lastline Data Node version 1130.1
- Lastline Sensor version 1311
- Lastline All-in-one (Pinbox) version 1130.1
Released Sandbox Images Versions
The sandbox images version will remain at 2021-06-25-01.
Distribution Upgrade
Version 9.4.5 was the final version to support Ubuntu Xenial as our operating system distribution. In order to upgrade to 9.6.1, you must be running Bionic as the operating system distribution.
You can check the distribution in use by an appliance in the Appliance Status view of the portal. The "Base Distribution" listed should be "bionic". If it is "xenial", the appliance distribution needs to be upgraded.
For help on the upgrade process, please refer to the following instructions. This update is not done automatically to prevent unexpected downtime.