Portuguese language support was added to the client UI.
Firewall and Application Control
During an upgrade from E85.10, the firewall stays connected.
For standalone VPN clients (Endpoint Security VPN, Check Point Mobile, SecuRemote), there is an option to suppress the firewall compliance warning, if the firewall is not part of the installation.
Anti-Ransomware, Behavioral Guard and Forensics
Threat Hunting includes the ability to view MAC addresses for every computer sending data.
Added a new sensor to extract the contents of newly created Batch files. This data can be viewed in the Forensics reports, as well as in Threat Hunting.
There is a new CLI utility to restore all files from the backup and restoration folder manually.
New Outlook sensor installed as an add-in is now available to report high-level email data to Threat Hunting. In addition, attacks that started with an email attachment now show the email details in Forensics. Note: Contents of the email are not stored.
Harmony Endpoint Browser Extension
Browser Extension New Capability: Enforce Safe Search
The Administrator can compel his Endpoint users to use the "Safe Search" feature when they employ the Google, Bing and Yahoo search engines.
"Enforcing Safe Search" is done by configuring the Web-protection policy.
The Endpoint user is unable to change these settings.
For more information about Safe Search, refer to: https://support.google.com/websearch/answer/510?co=GENIE.Platform%3DAndroid&hl=en
Enables you to assign the "Connected" policies to a configured inner source location, instead of to the Endpoint Management Server. This allows you to distinguish if the Endpoint Security Client is in the organization network or not.
In a Nutshell
E85.10 Endpoint Security Clients for Windows OS
E85.10 Endpoint Security Clients for Windows OS - Dynamic package
Starting from E80.85, Harmony Endpoint improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.