WatchGuard Product Update Blog
  1. TDR Machine Learning Enhanced Host Ransomware Prevention Beta

    TDR Machine Learning Enhanced Host Ransomware Prevention Beta
    Categories:
    rarroyo Thu, 02/13/2020 - 11:08

    We are excited to announce that Threat Detection and Response has a new feature to Beta test!

    Ransomware authors are getting smarter and bolder. Every day they find new ways to avoid detection and steal data. TDR already protects your endpoints from devastating ransomware attacks. As ransomware attacks evolve, we must improve our ability to stop them with faster detection through machine learning.

    Machine Learning for Host Ransomware Prevention

    In 2018, we enhanced TDR's Detection and Response (D&R) engine with machine learning. This significantly increased our general indicator detection rate. Machine learning enhanced Host Ransomware Prevention (HRP) is now ready for Beta test. The addition of machine learning to HRP results in faster detection rates than our current detection model. With this enhancement, you will see more HRP indicators that result in remediations. 

    To participate in the Beta program, click the link below and follow the instructions provided.

    https://watchguard.centercode.com/key/MLHRP

    Thank you!

    TDR Product Team

     

  2. Dimension 2.1.2 Update 3 now available

    Dimension 2.1.2 Update 3 now available
    Categories:
    jvendramin Fri, 01/10/2020 - 11:08

    We are pleased to announce the availability of WatchGuard Dimension 2.1.2 Update 3. This maintenance release is now available from the Software Download Center, together with release notes and update instructions. WatchGuard Dimension 2.1.2 Update 3 provides the following fixes:

    General

    • Dimension now supports PostgreSQL versions up to v10.8.
    • This release resolves a PCI compliance failure due to behavior of HTTP redirect to HTTPS connection feature.
    • Quick Setup Wizard no longer stalls on administrator passphrase step on Hyper-V.
    • This release improves performance with multiple connected devices.
    • This release resolves a log collector memory leak issue.
       

    Logging and Reporting

    • Authenticated users now correctly appear as the source for connections in HTTP and HTTPS proxy connnections.
    • The User Expirationtime now correctly appears in local browser time zone.
    • The Policy Usage Reportnow appears in local browser time zone.
    • ConnectWise reports no longer fail with message Task failed: _CWReportGeneration_align_to_maxlines is not defined.
    • Geolocation data is now correctly included in Log Search results.
    • The phrase app_cat_id no longer appears in domain name or IP address fields in some Dimension reports.
    • This release resolves an issue that caused SMTP proxy report to show app_cat_ID=5 as the email sender.
       

    Device Management

    • The Dimension no longer displays feature keys for devices after you remove them.
    • Your Dimension will no longer create a new entry for a resolved FQDN that is already a configured static IP address.

    For a full list of resolved issues, please refer to the release notes on the Software Download Center.

     

    Does this release pertain to me?

    This release applies to all users of the WatchGuard Dimension network security visibility solution.  It is critical that any administrators using WatchGuard Dimension upgrade their solution to 2.1.2 Update 3 to take advantage of the security improvements available in the release. 

     

    Software Download Center

    Firebox and XTM appliance owners with active support subscriptions can obtain this update without additional charge by downloading the applicable packages from the WatchGuard Software Download Center.

     

     

     

  3. Now Available: Fireware 12.5.2 Update 1

    Now Available: Fireware 12.5.2 Update 1
    Categories:
    shelm Thu, 12/26/2019 - 12:48

    WatchGuard has posted Fireware 12.5.2 Update 1 in the Software Download Center. This update introduces several key bug fixes, as well as initial support for management of Firebox system tasks directly from WatchGuard Cloud. Full details are provided in the Release Notes, which are available here.  Update 1 was released on December 23 to address an issue in environments with asymmetric routing. More details are about the issue are available in our knowledge base article.

    Key Updates of This Release:

        - Updated versions of SSL and IPSec VPN clients, SSO client support for macOS Catalina

        - WebBlocker on-premises server version 1.1 – bug fixes

    Software Download Center

    Firebox appliance owners with active support subscriptions can obtain the Fireware 12.5.2 Update 1 without additional charge by downloading the applicable packages from the WatchGuard Software Download Center

    Download Fireware 12.5.2 Update 1 and Get Access to the Latest WatchGuard Cloud Beta

    WatchGuard Cloud provides a rich set of dashboards, reports, and alerts to help you monitor your Fireboxes. In the Fireware 12.5.2 release, we’ve added many of the system management actions that are most commonly performed by system administrators:

        - Firebox firmware upgrades – immediate or scheduled

        - Reboot a Firebox

        - Save and restore Firebox backup images

    The beta is underway now! Sign up and find out more details here: https://watchguard.centercode.com/WGCloudSystemActionsBeta

    Contact

    For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance Serial Number or Partner ID available.

  4. General Availability of Threat Detection and Response 5.8 Features

    General Availability of Threat Detection and Response 5.8 Features
    Categories:
    rarroyo Thu, 11/21/2019 - 10:24

    We are excited to announce that Threat Detection and Response (TDR) has some new capabilities! By popular demand, WatchGuard has made pre-configured Antivirus Exclusions a reality! Gone are the days of copying and pasting directory paths one by one into the Exclusions page.  These predefined exclusion sets make it easy to add exclusions for the most common antivirus vendors. 

    To see these changes in the TDR Web UI, select Configuration > Exclusions. The Exclusion page now includes two tabs: 

    • Custom Exclusions - Shows the exclusions you configured manually before version 5.8.0. Any custom exclusions you added previously still work as expected.
    • AV Exclusions - Shows the predefined sets of exclusions for common antivirus vendors. 

    In addition to the AV Exclusions feature, we have a new Host Ransomware Prevention (HRP) Visualization feature. When you view the details of an HRP Indicator that was successfully remediated, you can now view a graphical representation of the event.

    HRP Chart View

    If the Indicator can be graphed, you will see a new Chart button in the Additional Details pop-up of the Indicator. Click the button to open a new window.  The chart is interactive, with the following capabilities: 

    • Processes are displayed as square nodes 
    • If the Process has Behaviors, a plus sign will display in the Process node. 
    • Behaviors are displayed as oval nodes, and will be expanded when you click on the plus sign 
    • Hover over any node to show details 
    • Click on a node to highlight the node and the paths to related nodes 
    • The Download/Export icon enables you to export the chart as an image

    We hope you are as excited about this new feature as we are! Any and all feedback is always welcome! 

    Thank you! 
    WatchGuard Product Team 

  5. Fireware Maintenance Update - 12.5.1 Update 1

    Fireware Maintenance Update - 12.5.1 Update 1
    Categories:
    bpatterson Tue, 11/05/2019 - 16:34

    Fireware 12.5.1 Update 1       
    WatchGuard has posted Fireware 12.5.1 Update 1 at the Software Download Center. There is no corresponding update to WSM. This maintenance update provides resolution to issues that have been reported by customers. Based on feedback from our partners, we plan to make more bug fix update releases generally available instead of providing just customer speciific patches or hotfixes. Full details are provided in the Release Notes, which are updated since the 12.5.1 GA release. 

    Does this release pertain to me?
    Fireware 12.5 Update 1 is available for all Firebox T and Firebox M appliances. 

    Software Download Center
    Firebox appliance owners with active support subscriptions can obtain the Fireware 12.5.1 Update 1 without additional charge by downloading the applicable packages from the WatchGuard Software Download Center.  

    Contact
    For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance Serial Number or Partner ID available.