<main>
<article class="userContent">
<h2 data-id="editor-s-highlights">Editor’s Highlights</h2><h3 data-id="elements-connector">Elements Connector</h3><p>A new version of the Elements Connector (internal version 23.05.97280) has been rolled out starting on 28.02.2023. The endpoints automatically upgrade, without a reboot.</p><p>The Elements Connector Ultimate proxy is introduced with this release. Please see below for more details.</p><h2 data-id="elements-security-center">Elements Security Center</h2><p><strong>Software updates tab now respects readOnlyWorkstations and readOnlyServer user permissions</strong></p><p>For example if user is logged with readOnlyWorkstation then all update checkboxes affecting only workstation will be hidden.Also when select all or individual update checkbox is clicked then operations wizard has update button enabled only for which user is permitted.</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png" alt="SWUP.png" height="1868" width="3476" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png 1600w, https://us.v-cdn.net/6035899/uploads/LOE4MINAJCE8/swup.png"></img></a>
</div>
</div>
<p><strong>Show disabled checkboxes for missing updates instead of hiding them for full readOnly, readOnlyWorkstations or readOnlyServers users</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png" alt="SWUP2.png" height="893" width="2302" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png 1600w, https://us.v-cdn.net/6035899/uploads/UW3KD4PRS0HI/swup2.png"></img></a>
</div>
</div>
<p><strong>Select devices to update button is enabled now when select all updates clicked</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png" alt="SWUP3.png" height="1249" width="1135" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png 1600w, https://us.v-cdn.net/6035899/uploads/9QIGUFBOG3Q7/swup3.png"></img></a>
</div>
</div>
<p><strong>Installation Logs of Software Updates can now be filtered by the Device UUID and List of BulletinIDs</strong></p><p>Additionally the filters in general in both Missing Updates and Installation Log tabs are persistent. Same as in Security Events and Audit Log. </p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png" alt="SWUP4.png" height="862" width="1956" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png 1600w, https://us.v-cdn.net/6035899/uploads/5T8WDJ7F8VZH/swup4.png"></img></a>
</div>
</div>
<p><strong>Added confirmation popup for evaluating rules for all devices after saving</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png" alt="RuleConfirmation.png" height="889" width="1665" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png 1600w, https://us.v-cdn.net/6035899/uploads/SXH25AZL34TJ/ruleconfirmation.png"></img></a>
</div>
</div>
<p><strong>Update advisory entry for Connector low disk space to use 5GB instead of 20GB</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png" alt="Dash.png" height="716" width="1388" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png 1600w, https://us.v-cdn.net/6035899/uploads/XO95LMDIVBAE/dash.png"></img></a>
</div>
</div>
<p><strong>Audit Logs added for quarantine related operations are now accessible from Security Events list </strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png" alt="Reports.png" height="1170" width="2272" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png 1600w, https://us.v-cdn.net/6035899/uploads/X49KLG793357/reports.png"></img></a>
</div>
</div>
<p><strong>Navigation from Device Details to the filtered Installation Log is now possible</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png" alt="Nav.png" height="580" width="1380" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png 1600w, https://us.v-cdn.net/6035899/uploads/99R342STS3PR/nav.png"></img></a>
</div>
</div>
<p><strong>UI improvements to Custom report for devices</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png" alt="CustReports.png" height="903" width="1920" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png 1600w, https://us.v-cdn.net/6035899/uploads/J166JZR97GJJ/custreports.png"></img></a>
</div>
</div>
<p><strong>Added enabling / disabling change tracking to audit logs</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png" alt="Audit.png" height="420" width="1508" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png 1600w, https://us.v-cdn.net/6035899/uploads/KFN22ZBF6UF9/audit.png"></img></a>
</div>
</div>
<p><strong>Added possibility to export a read-only profile</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png" alt="ExportRO.png" height="680" width="1673" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png 1600w, https://us.v-cdn.net/6035899/uploads/TWBLSLJH57RC/exportro.png"></img></a>
</div>
</div>
<h2 data-id="elements-endpoint-protection">Elements Endpoint Protection</h2><h3 data-id="withsecure-elements-agent-for-windows-and-server-new-version-23-2"><strong>WithSecure Elements Agent for Windows and Server new version 23.2</strong></h3><p>A new version of the endpoint clients is available.</p><p>This release makes the Elements Agent version 23.2 available (internal version 23.2.1150).</p><p>The endpoints automatically upgrade, without a reboot.</p><p><strong>A new security event is triggered if Server Share Protection backup fails because folder does not exist</strong></p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png" alt="SSP.png" height="195" width="1000" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png 1600w, https://us.v-cdn.net/6035899/uploads/D97N9SKWSJZV/ssp.png"></img></a>
</div>
</div>
<p><strong>Elements agent shows a flyer if browsing protection is enabled but browser extensions are not installed or not activated</strong></p><p>This feature can be enabled from "Remind user to activate browser plugins" in Browsing protection settings of the portal's profile editor. </p><div class="embedExternal embedImage display-medium float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png" alt="BrowserExt.png" height="180" width="330" loading="lazy" data-display-size="medium" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png 1600w, https://us.v-cdn.net/6035899/uploads/LESBHW4D4ZQL/browserext.png"></img></a>
</div>
</div>
<p>In addition:</p><ul><li>Elements Agent user interfaces have new WithSecure style.</li><li>Vulnerability scanning task will work in Element agent even if Automated tasks feature is disabled in profile.</li><li>Deploying Elements agent as Win32 app in MS Intune is supported.</li><li>"Hide exclusions from clients" option hides now exclusions also from the scan report.</li><li>Turn off security features turns off also features that are locked in the profile.</li><li>Network location settings changes also settings that are locked in the profile depending on the network location.</li><li>Software updater marks now updates as security updates faster than before.</li><li>Elements agent does not send empty IPv4 and IPv6 addresses to portal anymore.</li></ul><h2 data-id="elements-collaboration-protection">Elements Collaboration Protection</h2><p><strong>Elements Collaboration Protection Update</strong></p><p>This latest release adds:</p><ul><li>New response action for SharePoint OneDrive and Teams policy settings: immediate deletion of malicious content </li><li>The possibility to automatically protect newly added assets in SharePoint and OneDrive</li></ul><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png" alt="CP.png" height="545" width="1080" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png 1600w, https://us.v-cdn.net/6035899/uploads/HYCWUEDBZFF1/cp.png"></img></a>
</div>
</div>
<h2 data-id="elements-vulnerability-management">Elements Vulnerability Management</h2><p><strong>Option of ignoring false positives on the Discovery scan configuration user interface</strong></p><p>By filtering out false or unreliable hosts based on their TTL (Time to Live) value, it helps to ensure that only accurate and trustworthy information is utilized within the network.</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png" alt="EVM-Scan-Settings.png" height="807" width="1126" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png 1600w, https://us.v-cdn.net/6035899/uploads/ZWP854LB1O1O/evm-scan-settings.png"></img></a>
</div>
</div>
<p><strong>Updates to Web scan configuration section</strong>.</p><p>The default HTTP headers configuration has been moved to the Web scan section and custom headers now replace the default headers. A new option to include the Web scan product identifier in the User-Agent HTTP header has also been added.</p><h3 data-id="elements-vulnerability-management-system-scan"><strong>Elements Vulnerability Management System Scan</strong></h3><p>This release includes:</p><ul><li>Capability to detect vulnerabilities in Sunlogin Client in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in McAfee Security Scan Plus in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Tailscale in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Securepoint SSL VPN Client in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Windscribe VPN in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Aviatrix OpenVPN Client in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Acronis Cyber Protect Home Office in authenticated scanning for Windows</li></ul><h3 data-id="elements-vulnerability-management-web-scan"><strong>Elements Vulnerability Management Web Scan</strong></h3><p>This release includes:</p><ul><li>Added 401 Unauthorized response code as a correct return code for the login page</li><li>Added support for CVSSv3</li><li>Added logout monitoring to the regular crawler</li></ul><h3 data-id="elements-vulnerability-management-system-scan-1"><strong>Elements Vulnerability Management System Scan</strong></h3><p>This release includes:</p><ul><li>Capability to detect vulnerabilities in Adaware Protect in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in AnyDesk in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Stormshield SSL VPN Client in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Sophos Exploit Prevention in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in McAfee Data Loss Prevention (DLP) Endpoint in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in HP Connection Optimizer in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in pgAdmin in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Hotspot Shield VPN client in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Avast Secure Line VPN in authenticated scanning for Windows</li><li>Capability to detect vulnerabilities in Kaspersky VPN Secure Connection in authenticated scanning for Windows</li></ul><h2 data-id="integrations">Integrations</h2><h3 data-id="elements-api-change-in-existing-endpoints"><strong>Elements API change in existing endpoints</strong></h3><p><a href="https://connect.withsecure.com/api-reference/elements#get-/devices/v1/devices" target="_blank">Devices endpoint</a>: </p><ul><li>filtering by device serial number and protectionStatusOverview</li><li>New fields for software update: last software scan and install timestamps were added to response (for device type computer)</li></ul><p><a href="https://connect.withsecure.com/api-reference/elements#get-/security-events/v1/security-events" target="_blank">Security events endpoint</a>: </p><ul><li>engine and severity query parameters support multiple values</li></ul><h3 data-id="withsecure-connector-23-05"><strong>WithSecure Connector 23.05</strong></h3><p>A new version of the Elements Connector (internal version 23.05.97280) has been rolled out starting on 28.02.2023. The endpoints automatically upgrade, without a reboot.</p><p><strong>The Elements Connector Ultimate proxy is introduced with this release</strong></p><p>This feature allows Connector to act as a proxy for all traffic between WithSecure endpoints and cloud services simplifying firewall configurations and allowing the use of WithSecure products in semi-closed environments. It extends GUTS2 and SWUP caching only mode and is enabled for all Connectors by default. </p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png" alt="MicrosoftTeams-image (39).png" height="819" width="2223" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png 1600w, https://us.v-cdn.net/6035899/uploads/T5JRV31IJNE3/microsoftteams-image-2839-29.png"></img></a>
</div>
</div>
<p><strong>Chained Connectors are now possible</strong></p><p>It is now possible to chain Elements Connectors so that it uses another one to reach the backends. For that, you need to specify the upstream connector in the profile as an HTTP proxy. You can specify multiple Connectors using a semicolon.</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png" alt="MicrosoftTeams-image (40).png" height="897" width="2237" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png 1600w, https://us.v-cdn.net/6035899/uploads/H6VIC3YCPFHQ/microsoftteams-image-2840-29.png"></img></a>
</div>
</div>
<p><strong>Elements Connector starts using the new Elements API to forward security events</strong></p><p>If Connector was already configured to use Event Forwarding, it continues using current credentials after the upgrade, follow <a href="https://help.f-secure.com/product.html#business/connector/latest/en/task_F657F4D0F2144CD5913EE510E155E234-latest-en" target="_blank">API configuration instructions</a> to reconfigure and start using the new Elements API.</p><p><strong>Multiple HTTP proxy support</strong></p><p>Support for multiple HTTP proxies has been introduced so that Elements Connector remains connected in case of proxy failure. You can specify multiple HTTP proxies using a semicolon. If the connection becomes unstable, Elements Connector starts using the next proxy from the list:</p><p><code class="code codeInline" spellcheck="false" tabindex="0">http://myproxy-1:80;http://myproxy-2:80;http://myproxy-3:80</code></p><p><strong>Elements Connector integration for Microsoft Sentinel</strong></p><p>We have now made Elements Connector available in the <a href="https://azuremarketplace.microsoft.com/en-us/marketplace/apps/withsecurecorporation.sentinel-solution-withsecure-via-connector" target="_blank">Azure Marketplace</a>. </p><p><strong>Elements Connector is now branded as WithSecure</strong></p><p>This release introduces WithSecure brand. Previous releases were branded as F-Secure.</p><p><strong>Forwarded events now have WithSecure vendor name</strong></p><p>If your SIEM is configured to filter based on the vendor name, this filter has to be adjusted.</p><h2 data-id="other-items-of-interest">Other items of interest</h2><h3 data-id="monthly-threat-highlights-report-february-2023"><strong>Monthly Threat Highlights Report: February 2023</strong></h3><p><strong>Ransomware: Trends and notable reports</strong></p><ul><li>ESXiArgs</li><li>The end of Hive???</li><li>Alphv attack on Munster</li><li>Technological University</li><li>The $10k ransomware manual</li><li>TV provider Dish experience ransomware attack</li><li>Newcomers: Nevada</li><li>Newcomers: Mimic</li></ul><p><strong>Other notable highlights in brief</strong></p><ul><li>GoAnywhere exploitation</li><li>Zoho ManageEngine exploitation</li><li>KeePass problems</li><li>QR code phishing</li><li>Sh1mmer exploit can unenroll managed Chromebooks</li><li>IceBreaker target gaming/gambling companies</li></ul><p>You can download the full <a href="https://www.withsecure.com/content/dam/with-secure/en/resources/WS_Threat_Highlight_report_February_2023.pdf" target="_blank">report</a> for reading later.</p><h2 data-id="in-case-you-missed-it">In case you missed it</h2><h3 data-id="changes-to-your-withsecure-business-account"><strong>Changes to your WithSecure Business Account</strong></h3><p>On Wednesday 8th of March we made some changes to the WithSecure Business Account (formerly F-Secure Business Account), and we would like to remind you of these. You can read more from the following <a href="https://community.withsecure.com/en/kb/articles/29715-upcoming-changes-to-your-withsecure-business-account" target="_blank">article</a></p><h3 data-id="end-of-support-for-windows-7-and-windows-server-2008"><strong>End of Support for Windows 7 and Windows Server 2008</strong></h3><p>In 2019, F-Secure Business (now WithSecure) communicated that product support for Windows 7 and Windows Server 2008R2 would end in January 2023 for Elements and Business Suite products, in line with Microsoft’s own Extended Security Updates program.</p><p>These Operating System versions are no longer supported by Microsoft and will receive no further security updates.</p><p>To allow our customer base a little additional time to upgrade their devices, WithSecure will provide support for these products on legacy Operating Systems until 30 June 2023.</p><p>As such, both Microsoft and WithSecure strongly encourage customers to upgrade to supported versions as soon as possible.</p><p>The affected versions are:</p><ul><li>Microsoft Windows 7 (all variants)</li><li>Microsoft Windows Server 2008 (all variants, including 2008R2)</li></ul><p>You can read more from the following <a href="https://community.withsecure.com/en/kb/articles/29724-end-of-support-for-windows-7-and-windows-server-2008" target="_blank">link</a></p><h3 data-id="changes-in-support-on-microsoft-windows-minimum-patch-level"><strong>Changes in support on Microsoft Windows – Minimum patch level</strong></h3><p>In a world where cyber criminals seek to exploit even the smallest vulnerabilities to get access to your devices and data, it is really important to maintain your operating systems to the latest vendor patch level.</p><p>All Operating System vendors, including Microsoft, Apple, Google and all the Linux vendors, strongly recommend that their customers patch their devices regularly with the latest available patches, to help reduce the threat.</p><p>Using an unpatched operating system is risky, and WithSecure always recommends keeping patches up to date.</p><p>Occasionally, software vendors will change their requirements on minimum supported versions of operating systems, often in alignment with the OS vendor. Microsoft now requires a minimum patch level of October 2021 for certain types of files included in third-party software, and WithSecure is changing its requirements in alignment.</p><p>Read more from the following <a href="https://community.withsecure.com/en/kb/articles/29714-changes-in-support-on-microsoft-windows-minimum-patch-level" target="_blank">link</a></p><h3 data-id="reminder-elements-vulnerability-management-introduces-new-scoring-system-cvssv3"><strong>Reminder: Elements Vulnerability Management introduces new scoring system – CVSSv3</strong></h3><p>In order to align with industry standards and vulnerability scoring in WithSecure Elements Endpoint Protection, Elements Vulnerability Management will introduce CVSSv3 vulnerability scoring.</p><p><strong>What is happening?</strong></p><p>Since the introduction of Elements Vulnerability Management, it has used CVSS v2 for vulnerability scoring.</p><p>Starting from March 8, 2023 Elements Vulnerability Management uses CVSS v3.1.</p><p>Read more from the following <a href="https://community.withsecure.com/en/kb/articles/29706-elements-vulnerability-management-introduces-new-scoring-system-cvssv3" target="_blank">article</a></p><h3 data-id="share-your-ideas-with-us"><strong>Share your ideas with us</strong></h3><p>Our purpose is to co-secure the world with you – now as WithSecure™. To co-create the best possible cyber security products and services, we warmly recommend you share your ideas via our Ideas Portal, now accessible directly from WithSecure™ Elements Security Center.</p><div class="embedExternal embedImage display-large float-none">
<div class="embedExternal-content">
<a class="embedImage-link" href="https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png" rel="nofollow noreferrer noopener ugc" target="_blank">
<img class="embedImage-img" src="https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png" alt="Feedback.png" height="158" width="602" loading="lazy" data-display-size="large" data-float="none" srcset="https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=10/https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png 10w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=300/https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png 300w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=800/https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png 800w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1200/https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png 1200w, https://us.v-cdn.net/cdn-cgi/image/fit=scale-down,width=1600/https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png 1600w, https://us.v-cdn.net/6035899/uploads/LTLH4C23NWGU/feedback.png"></img></a>
</div>
</div>
<h2 data-id="further-information">Further information</h2><p>Changelogs and Release Notes for all parts of WithSecure™ Elements can be found at the <a href="https://help.f-secure.com/withsecure.html" target="_blank">Help Center</a> </p><p></p>
</article>
</main>