The Advanced Threat Defense (ATD) updated content packages for versions 4.0, 4.2, 4.4, 4.6, 4.8, 4.10, 4.12, and 4.14 are now available.
The detection package adds detection updates to ATD. This update includes the following changes:
- Rules to detect malware that operates by wiping the files present in the victim's computer and spreads like a worm within the network or computer, and steals sensitive and private information.
- Rules to detect a Trojan that shuts down the system.
- Rules to detect ransomware that steals corporate data and documents before encrypting a device. After infection, it will add the .basta extension to the encrypted or locked file's name.
- Rules to detect malwares that do a forceful system restart without any time delay.
For more details on changes and fixes, read the release notes.
Package details by version are as follows:
- atd-detection-img-4.14.2.220509-4.14.2.x86_64.rpm
- atd-detection-img-4.12.4.220509-4.12.4.x86_64.rpm
- atd-detection-img-4.10.2.220509-4.10.2.x86_64.rpm
- atd-detection-img-4.8.2.220509-4.8.2.x86_64.rpm
- atd-detection-img-4.6.2.220509-4.6.2.x86_64.rpm
- atd-detection-img-4.4.2.220509-4.4.2.x86_64.rpm
- atd-detection-img-4.2.2.220509-4.2.2.x86_64.rpm
- atd-detection-img-4.0.4.220509-4.0.4.x86_64.rpm
Customers can update to the detection package using the following two options:
- Product UI: Access on the ATD UI at: Manage, Image & Software, Content Update, Detection Pkg.
- Product Downloads site: Customers can download the content updates, behind appropriate grant numbers, from the Product Downloads site.
