-
Luminen: Your chance to provide feedback and improve the service
We’re excited to announce that after positive feedback from our Luminen Early Access program, this AI-powered feature is now free for all users! Luminen™, integrated into WithSecure™ Elements Cloud, uses generative AI to explain security events, provide Broad Context Detections™, and offer local-language reports with…
-
How to download Policy Manager 16.02?
Hello. We got instructions to upgrade F-Secure Policy Manger 15.11 to WithSecure 16.03 which is the one available version on the WithSecure page. However upgrading to policy manager console we cannot connect to the server. Want to try with older version but can't download it. Thanks, Michal
-
how to get notification or report when user temporary disable antivirus
Hi, we need to leave user possibility to temporary disable client, how we can get report or notification about ? i find something in "security event" but i need to get reported o notfication. thanks all
-
list of installed application on client
hi, any way to get the installed application list from all client? i tried from "software reputation" and cleared filter but i don't know if i can get all app or missing something.
-
Maintenance Break: Elements Collaboration Protection – 12th November 2024 / 17.00 UTC
We will be performing system maintenance on the Elements Collaboration system on 12th November 2024 at 17.00 UTC. Read the full article here:
-
New API feature: Checking the latest versions of product databases
For several years, we have had a web-based page known as dbtracker.f-secure.com, which was useful for finding out the latest versions of the various engines and databases used by our products. This service will be terminated in December 2024, as it is outdated and no longer suitable for WithSecure customers. Read the full…
-
I keep getting warning about "Access scanner could not scan object" from Linux host
I'm using Policy Manager Server an Console version 16.01.98252 and the hosts are using Linux Security 64 12.00 The current policy is straightforward. Real time scanning is enabled for the home repertory. I do not use Security Cloud and scan all files for potentially unwanted applications. The product is installed on about…
-
What is the difference between system tray icons?
I have noticed that the withsecure icon in the system tray can be found on Windows in black or white, but is there any difference between these or is it purely visual?
-
Does the collaboration protection cover Azure and Azure DevOps environment?
Does the collaboration protection cover Azure and Azure DevOps environment? If not, is there a product that does cover it?
-
Exposure Management: Attack Path Simulation – Looking at your environment with an attacker’s eyes
Attack Path Simulation illustrates how attacker can exploit your environment. It models how attacker can take advantage of different vulnerabilities and misconfigurations to move inside the network and to find valuable targets. Attack Path Simulation is a core feature of WithSecure Exposure Management (XM), for pointing…
-
New Feature: Federated Single Sign-On is now available for WithSecure Elements
Federated single sign-on (FSSO) is a mechanism that allows users to authenticate and access several applications or services across different domains or organizations without the need to log in separately for each. Users may already be familiar with this if they access their own organization’s systems using the same…
-
Elements IAM administrator role available in self-registration
As WithSecure Elements evolves, we will be adding new roles for specific purposes. For example, a company may only want to grant access to certain parts of Elements to specific users. This is known as Role Based Access Control, or RBAC. To facilitate the management of these roles, and granting users permissions to use…
-
WithSecure Elements and F-Secure branded clients – End of support 2024-12-31
As we have previously announced, due to infrastructure changes needed as part of our separation from F-Secure, the use of F-Secure branded clients is deprecated. The clients WILL stop working at the end of 2024, and will provide no protection at all. Customers using these deprecated clients MUST upgrade them to WithSecure…
-
Moved: Key Change Feature in WithSecure ESC
This discussion has been moved.
-
fsaua-update_32.exe doesn't work
Hello, with F-secure 15.30, I used fspm-definitions-update-tool to download the updates and I installed them offline with fsaua-update.exe. This worked very well. Since migrating to WithSecure 16.01, I've been using the new version of fspm-definitions-update-tool, which also works well. However, the new fsaua-update_32.exe…
-
Selected Exclusions for EDR - "Accepted behawior"
Please improove one option, becouse in first step "Accepted behawior " i can select only „all Devices” or „Affected devices” , there will be great to see option to select specific devices, becouse this specific behawior on IT department, or developer department users can run on his many devices, but now WithSecure…
-
WithSecure Ideas Platform Migration
We would like to inform you that the tool we use for collecting WithSecure ideas is migrating to the WithSecure Community on 15 October. During the migration, ideas.withsecure.com will be unavailable from 14 October through 16 October. After the migration, you can continue accessing it at the same…
-
XM newsletter Oct-08
Today we released Exposure management with new improvements: AttackPath visualizer tool updated with UX improvements. New Recommendation score calculation is in place: Recommendations are now generated for only highly-enough risked assets. This may lead into less Recommendations provided compared to what had been…
-
Which KB needed for Withsecure Elements EPP on Windows 10 v1909?
Hello everyone. I have an environment composed of several workstations with Windows 10 Pro v1909 and for compatibility reasons with an application developed internally can not be updated at the moment. When installing Withsecure on these stations i see from cloud manager that they appear unprotected, a warning that says…
-
Constant notifications regarding Malware
One of our servers is constantly flagging Malware, and we're not sure if the transactions are processing before the files are being quarantined and removed. Time|Account|Host|Infection|Action|Type|Infected Object|Infected Object SHA1 Sat, 5 October 2024 18:56:49 UTC|Talenom…
-
Devices are not visible on Pending List
Hi everybody, Some Windows 10 PC, after push installation of withsecure (16.00 client version for business suite), are not showed on PM Pending. I try to uninstall withsecure with a remove-tool and install again offline method with success, but are still showed on Unmanaged devices. All of devices are on AD Domain and have…
-
Quarantined tar file
Why are quarantined tar files being detected as malware during scans? This issue has been occurring with multiple files since yesterday. The file is located at the following path. Trojan-Downloader:W97M/Dridex.X|None|On_demand_scanner.file_infection.nothing|C:\ProgramData\F-Secure\Quarantine\Repository\TAR\00000001.tar[1]…
-
API - Insufficient scope. The request requires higher privileges than provided by the access token.
Hi I'm trying to make an integration with our PSA to create tickets and have a bi-directional sync with the Elements API. I've come to a point where I want to add a comment to an Incident using the incidents/v1/comments endpoint but I'm getting a 403 error with the message Insufficient Scope. My API key I'm using has "Full…
-
WithSecure license expiration grace period?
Is there a grace period after a WithSecure EPP license expires, or does it simply just stop working?
-
XDR: New Feature for Reopening Closed BCDs
We are pleased to introduce a feature that allows Partners and Customers to reopen closed BCDs within 30 days, regardless of the resolution code. This ensures any critical questions can be addressed post-closure. Read the full article here:
-
DeepGuard is blocking ANSIBLE for updates
Hello everyone, I have a problem where DeepGuard is preventing my updates from taking place, these updates are automated thanks to Ansible and therefore an Ansible user is in admin on my server to be able to deploy Windows updates on it. I need to deactivate DeepGuard from 3 to 4 a.m. because that's when the update is done…
-
Why is my Server Manager Console not registering ?
Hello everyone, I have a Policy Manager Console under Windows Server 2016 and my product cannot be registered because the website that you can see in the screenshot displays a 404 HTTP error. The trafic is not blocked by Windows firewall nor our firewalls, I can see the trafic being authorised and going out in the logs.…
-
WithSecure Linux Security 5.0.10 not installing
Hello everyone, I have an Ubuntu 22.04 machine that is not connected to the Internet. But this machine is connected to a Windows Server which have acess to the Internet. I have successfully installed the wsls-5.0.10-exported.zip package but I can't activate the product. I am trying this command " sudo…
-
BUG / Elements / Automated Actions for deletion
Hi, We have been creating some suppression rules for BCD, and it look like the Web interface has a bug. Browser is EDGE/FIREFOX, language is FRENCH, tried ENGLISH also, same problem. When looking at the suppression rules we see 10 lines by default, but the pager indicates "0 - 0 of 0 / 1 of 1". If we set the filter to 50,…
-
dl.delivery.mp.microsoft.com cache site marked as harmfull
Microsoft seems to have outsourced their updates distribution and this gets blocked. How do I allow this traffic as it's a IP address that's changing? WithSecure Elements Endpoint Protection har nya identifieringar: Tid|Konto|Värd|Infektion|Åtgärd|Typ|Infekterat objekt|Infekterat objekt SHA1 fre, 10 maj 2024 19:58:48…