Version 8.4.1
Detection Improvements
- SENT-2477: Improved detection of threats leveraging .lnk files as propagation vector.
- FEAT-4476: Improved detection of malicious MS Office documents which use EvilClippy technique to bypass detection by stomping VBA code.
Bug Fixes and Improvements
- SENT-2511: Fix to a bug that would cause the file processing pipeline to slow down under extreme load.
- SENT-2497: Fix to a bug that would cause the file processing pipeline to get stuck when in sniffing mode under certain circumstances.
- CC-2588: An issue was fixed causing the upgrade to fail due to a specific package that may be installed.
Deprecation of API Methods
No additional API methods are being deprecated or discontinued in this release.
The Lastline API documentation includes a deprecation schedule for methods in the legacy API, as well as information on how to replace usage of these deprecated methods with supported methods.
Released Appliance Versions
As part of this release, we are making available the following versions of Lastline appliances for use with Lastline Enterprise On-Premises:
- Lastline Manager version 1063
- Lastline Engine version 1063
- Lastline Sensor version 1082
- Lastline All-in-one (Pinbox) version 1063
Released sandbox images versions
The sandbox images version will remain at 2019-04-18-01.
Distribution Upgrade
Version 8.3.2 was the final version to support Ubuntu Trusty as our operating system distribution. In order to upgrade to 8.4.1, you must be running Xenial as the operating system distribution.
You can check the distribution in use by an appliance in the Appliance Status view of the portal. The "Base Distribution" listed should be "xenial". If it is "trusty", the appliance distribution needs to be upgraded.
For help on the upgrade process, please refer to the following instructions. This update is not done automatically to prevent unexpected downtime.