Harmony Endpoint Browser Extension: Because Microsoft has stopped supporting Internet Explorer, the Internet Explorer Browser Extension is now disabled by default. In order to re-enable it, contact Check Point Support.
Resolves a rare issue where the Anti-Malware blade is stuck in "Initializing" state, after a signature update.
Resolves an issue where after an Endpoint Security Client upgrade, Anti-Malware is registered twice in "Windows Security Center".
Update the Anti-malware engine. This requires an update for the Anti-malware updater on the server. See sk141033.
Anti-Ransomware, Behavioral Guard and Forensics
The correct File size is now shown in the Forensics Log.
The "Delete Anti-Ransomware Backup Folder" push operation is now better supported through Endpoint Security Management.
The Anti-Ransomware "Restore From Backup Folder" push operation is now better supported through Endpoint Security Management.
Fixes an issue where Outlook disables the Harmony Add-in because of a few seconds delay.
The Outlook sensor now separates out the display URL from the actual target URL. Both fields are displayed in Threat Hunting.
Adds the ability to do remediation based on MD5.
Fixes an issue with a rare "high CPU" scenario related to Forensics.
The Forensic Analysis now correctly identifies the user in Terminal Server environments.
Improved Forensics performance by excluding a folder that does not have incident relevance.
The Forensics Analysis now correctly runs for Symantec AV events in Polish.
Added new email related fields to detection events in Threat Hunting. When Forensics Analysis is able to attribute an email to an attack these fields will appear.
Improved Forensics performance by optimizing the load image events recorded.
Full Disk Encryption
Fixes an issue where an upgrade of FDE could be started during initial deployment.
Fixes an issue with high CPU usage, when OneCheck lock screen images are generated.
Resolves an issue where a computer with BitLocker encryption gets stuck at the "Deliver recovery file" prompt, after an upgrade.
Exported dynamic package can be converted to regular MSI using /CreateMSI option passed in command line.
Resolves an issue with broken MSVC redistributables that causes a Remote Access clients for Windows installation failure.
Active Directory scanner now supports big organizations with resulted data larger than 50MB.
Resolves an issue where Endpoint Security Clients connected to a "Signature Server", could not be configured to work as regular clients by changing the policy.
Starting from E80.85, Harmony Endpoint improves coverage of malicious threats by sending anonymized Incident related data to the Check Point Threat Cloud. This feature is turned on by default. For more information, including how to disable this feature, refer to sk129753.
To support SmartLog or SmartView Tracker reporting with Endpoint Security Clients for all supported servers (except R80.20), you must update the log schema. Follow instructions in sk106662.