WatchGuard Product Update Blog
  1. What’s New from WatchGuard: Q3 2024

    Today's attackers are always a step ahead, leveraging emerging technologies for malicious gains. Staying secure feels like running on a treadmill - you're always trying to catch up. WatchGuard's Unified Security Platform® is built to evolve with threats. Our commitment to continuous innovation means you'll always have the tools to protect your business and customers. We use quarterly updates to inform you of our latest features and enhancements. With WatchGuard, you're not just buying a security solution but investing in peace of mind.

    NETWORK SECURITY RELEASES

    WebBlocker Override
    WatchGuard now offers WebBlocker Override in Cloud-Managed Fireboxes, empowering MSPs to grant temporary access to blocked websites. Previously available on locally managed devices, this functionality brings more control to Cloud environments. Administrators can now configure overrides within WatchGuard Cloud, eliminating the need to adjust proxy settings. This is particularly valuable for partners and customers transitioning to Cloud management, allowing authorized users to bypass web restrictions without compromising firewall policies. The bypass method can be a shared passphrase or user group authentication, providing options for different security needs. Learn more

    FIPS140-3 Certification
    WatchGuard is committed to providing the highest level of security for your data. We're excited to announce significant progress towards FIPS 140-3 certification for several WatchGuard Firebox models, including T25, T45, T85, M290, M390, M490, M590, M4800, and M5800. FIPS 140-3 is the gold standard for cryptographic module validation, ensuring our firewalls meet the strictest government encryption requirements. This certification ensures secure data management and transfers on your network, making WatchGuard Fireboxes ideal for government deployments and organizations supporting them. While final award timing rests with government entities, submitting for FIPS allows you to proceed with opportunities requiring this compliance. Visit the NIST website to see the current status of our certification. 

    Captive Portals for Fireboxes
    Captive portal for a Firebox empowers operators to enforce strict network access control on guest and non-corporate networks. This feature ensures that only authorized users can connect, providing a secure gateway for guests to access the Internet without compromising internal network safety. Beyond access control, Captive Portals offer customizable branding, robust content filtering, and advanced data collection and analytics. These capabilities make them indispensable for service providers and customers, simultaneously enhancing network security and user experience. Learn more

    Fireware 12.10.4 U2
    Fireware 12.10.4 Update 2 is a regular maintenance update with bug fixes, vulnerability patches, and minor improvements for our Firebox firewalls. We prioritize regular maintenance releases every 6-12 weeks to provide our customers with the latest security patches and ensure system stability. As part of the improvements, administrators can now block the sources of repeated failed login attempts, enhancing security against attackers. This is significant due to the increasing frequency of brute-force attacks, and blocking suspicious IP addresses significantly strengthens your defenses. Enjoy peace of mind knowing that your Firebox has the latest security features to protect sensitive data. Read the release notes

    WATCHGUARD CLOUD FEATURES

    Linked to License Allocations
    Linked to License allocations simplifies license management for service providers. This new type directly connects allocations to specific activated licenses, streamlining tracking and preventing over-allocation issues. It eliminates manual updates by automatically adjusting quantities and expiration dates based on the source license, even during renewals. Additionally, it isolates tenants from broader over-allocation events and automatically manages associated Endpoint modules. This enhanced solution addresses key pain points for partners using Term licenses, offering improved traceability, protection against over-allocation, and streamlined renewal processes. This paves the way for future WatchGuard Points enhancements while providing partners with a valuable tool for efficient license management. Learn more

    SECURE WI-FI RELEASES

    Schedule AP Site Deployments
    WatchGuard Cloud empowers operators to schedule automated deployments of new access point configurations. This eliminates the need to manually update each access point, preventing service disruptions due to simultaneous radio restarts. Operators can choose a future deployment time and determine if updates occur concurrently or sequentially across subscribed access points. This functionality is unique in the market, allowing for "set it and forget it" bulk configuration changes, especially valuable for access points often viewed primarily for network access, not just security. Learn more 

    Packet Capture for Access Points
    Imagine having the power to troubleshoot Wi-Fi connection issues directly from your access point. With packet capture, you can do just that. Capture and download packet data from wireless and wired interfaces, customizing your capture settings. This feature brings the same troubleshooting capabilities you enjoy with Firebox to your WatchGuard Cloud, enhancing your ability to diagnose wireless problems and gather valuable network data. Learn more

    THREATSYNC (XDR) RELEASES

    MAC Response Actions
    Empower your security teams to swiftly and effectively mitigate threats on macOS devices. Our enhanced macOS Response Actions provide a comprehensive solution for incident management, enabling operators to isolate endpoints, terminate malicious processes, and restore deleted files with precision and speed. This cross-platform consistency and real-time incident correlation ensures a unified and proactive security posture for your organization. Learn more

    Comments in Incident APIs - GA Sep
    ThreatSync's Public APIs for Incidents and Response Actions empower operators and analysts to integrate incident management into their existing workflows seamlessly. By enabling comments on incidents within third-party PSA, RMM, and Ticketing tools, ThreatSync enhances efficiency, collaboration, and accountability. This feature streamlines communication, ensures consistent documentation, and provides a comprehensive audit trail for incident handling, improving overall security posture and operational effectiveness. Learn more

    Endpoint-based ThreatSync Scoring
    WatchGuard's Endpoint-based ThreatSync Scoring empowers security teams to proactively manage and mitigate risks by providing a comprehensive view of endpoint security. By aggregating incident data, scoring endpoints, and enabling granular response actions, customers can prioritize threats effectively, reduce response time, and strengthen their overall security posture. WatchGuard's innovative approach sets it apart from competitors, offering a more targeted and efficient solution for securing endpoints in today's evolving threat landscape. Learn more

    QUESTIONS?
    If you have any questions about the new features released in Q3 2024, don't hesitate to contact your local WatchGuard sales representative or visit our online Support page. 

  2. Firebox Price Adjustment and End-of-Life Notice: What You Need to Know

    Effective October 1, 2024, WatchGuard will increase the renewal prices for our T70, T55-W, T55, T35-W, and T35 Firebox appliances (see the full SKU list below). These models will no longer be supported after their end-of-life on December 31, 2025.

    Please purchase before October 1, 2024, to save up to 16% on renewal costs. If you plan to use these appliances until they are no longer supported, this is your last opportunity to lock in the current pricing.

    After October 1st, we recommend upgrading to a newer WatchGuard Firebox model. Our newer appliances offer enhanced security features, improved performance, and extended support. 

    Please contact your WatchGuard representative for more information or to discuss your upgrade options. 

    Impacted SKU List

    WGT70171        WatchGuard APT Blocker 1-yr for Firebox T70
    WGT70201        WatchGuard Standard Support Renewal 1-yr for Firebox T70
    WGT70261        WatchGuard Gold Support Renewal/Upgrade 1-yr for Firebox T70
    WGT70331        WatchGuard Basic Security Suite Renewal/Upgrade 1-yr for Firebox T70
    WGT70351        WatchGuard Total Security Suite Renewal/Upgrade 1-yr for Firebox T70
    WGT56171        WatchGuard APT Blocker 1-yr for Firebox T55-W
    WGT56201        WatchGuard Standard Support Renewal 1-yr for Firebox T55-W
    WGT56261        WatchGuard Gold Support Renewal/Upgrade 1-yr for Firebox T55-W
    WGT56331        WatchGuard Basic Security Suite Renewal/Upgrade 1-yr for Firebox T55-W
    WGT56351        WatchGuard Total Security Suite Renewal/Upgrade 1-yr for Firebox T55W 
    WGT55171        WatchGuard APT Blocker 1-yr for Firebox T55
    WGT55201        WatchGuard Standard Support Renewal 1-yr for Firebox T55
    WGT55261        WatchGuard Gold Support Renewal/Upgrade 1-yr for Firebox T55
    WGT55331        WatchGuard Basic Security Suite Renewal/Upgrade 1-yr for Firebox T55
    WGT55351        WatchGuard Total Security Suite Renewal/Upgrade 1-yr for Firebox T55
    WGT36171        WatchGuard APT Blocker 1-yr for Firebox T35-W
    WGT36201        WatchGuard Standard Support Renewal 1-yr for Firebox T35-W
    WGT36261        WatchGuard Gold Support Renewal/Upgrade 1-yr for Firebox T35-W
    WGT36331        WatchGuard Basic Security Suite Renewal/Upgrade 1-yr for Firebox T35-W
    WGT36351        WatchGuard Total Security Suite Renewal/Upgrade 1-yr for Firebox T35-W
    WGT35171        WatchGuard APT Blocker 1-yr for Firebox T35
    WGT35201        WatchGuard Standard Support Renewal 1-yr for Firebox T35
    WGT35261        WatchGuard Gold Support Renewal/Upgrade 1-yr for Firebox T35
    WGT35331        WatchGuard Basic Security Suite Renewal/Upgrade 1-yr for Firebox T35
    WGT35351        WatchGuard Total Security Suite Renewal/Upgrade 1-yr for Firebox T35

  3. WatchGuard Fireware v12.10.4 Update 2 Available Now

    At WatchGuard, security is our top priority. We're committed to providing our customers with the latest protection against evolving cyber threats. Today, we're pleased to announce the availability of Fireware v12.10.4 Update 2, which addresses several bugs and some minor functional updates. 

    Which products are affected by this release?

    • T Series: T20, T40, T55, T70, and T80
    • M Series: M270, M290, M370, M390, M400, M440, M500, M590, M690, M4600, M4800, M5600, and M5800
    • Firebox NV5, FireboxV, and Firebox Cloud

    Upgrade Now and Stay Protected

    We strongly recommend that all Firebox users upgrade to this update immediately. Upgrading to Fireware v12.10.4 Update 2 is simple. Complete upgrade instructions and the firmware can be downloaded from the WatchGuard Software Downloads page.

    For additional information on this update, please refer to the Fireware v12.10.4 Update 2 Release Notes.

    Stay Informed

    WatchGuard is committed to keeping our customers informed about the latest security threats. For the most up-to-date information on vulnerabilities and how WatchGuard products address them, please visit our Trust Center. Please contact your local WatchGuard representative if you have any additional questions about this release. For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance Serial Number or Partner ID available. 

  4. WatchGuard Fireware v12.5.12 Update 2 Available Now

    At WatchGuard, security is our top priority. We're committed to providing our customers with the latest protection against evolving cyber threats. Today, we're pleased to announce the availability of Fireware v12.5.12 Update 2, which addresses a critical vulnerability, CVE-2024-5974.

    Affected Fireboxes

    T15 and T35 series

    Upgrade Now

    We strongly recommend that all Firebox users upgrade to this update immediately. The process is simple, and complete upgrade instructions along with the firmware can be downloaded from the WatchGuard Software Downloads page. For additional information on this update, please refer to the Fireware v12.5.12 Update 2 Release Notes.

    Stay Informed

    WatchGuard is committed to keeping our customers informed about the latest security threats. For the most up-to-date information on vulnerabilities and how WatchGuard products address them, please visit our Trust Center. If you have any additional questions about this release, please get in touch with your local WatchGuard representative. 

  5. WatchGuard Fireware v12.10.4 Update 1 Available Now

    At WatchGuard, security is our top priority. We're committed to providing our customers with the latest protection against evolving cyber threats. Today, we're pleased to announce the availability of Fireware v12.10.4 Update 1, which addresses a critical vulnerability (CVE-2024-6387) recently discovered in OpenSSH.

    What is CVE-2024-6387?

    This vulnerability, nicknamed "regreSSHion," affects OpenSSH versions 8.9p1 and earlier. A malicious actor could exploit it to execute arbitrary code on a vulnerable system, allowing them to take complete control of your device and potentially gain access to your network.

    Upgrade Now and Stay Protected

    Fireware v12.10.4 Update 1 includes a patch for this vulnerability, mitigating the risk of exploitation on WatchGuard Fireboxes. We strongly recommend that all Firebox users upgrade to this update immediately.

    Upgrading to Fireware v12.10.4 Update 1 is simple. Complete upgrade instructions and the firmware can be downloaded from the WatchGuard Software Downloads page.

    For additional information on this update, please refer to the Fireware v12.10.4 Update 1 Release Notes.

    Stay Informed

    WatchGuard is committed to keeping our customers informed about the latest security threats. For the most up-to-date information on vulnerabilities and how WatchGuard products address them, please visit our Trust Center. If you have any additional questions about this release, please get in touch with your local WatchGuard representative.