CylanceOPTICS release notes
CylanceOPTICS
release notesWhat's new in CylanceOPTICS (December 2024)
CylanceOPTICS
(December 2024)Feature | Description |
---|---|
New Windows agent | The CylanceOPTICS agent for Windows version 3.3.3120 is now available in the management console.For more information about the fixes in this release, see CylanceOPTICS fixed issues. |
What's new in CylanceOPTICS (September 2024)
CylanceOPTICS
(September 2024)Feature | Description |
---|---|
New agents for macOS and Linux | The following versions of the CylanceOPTICS agent are now available in the management console:
|
Support for macOS 15 (Sequoia) | This release of the CylanceOPTICS agent for macOS adds support for macOS 15 (Sequoia). |
What's new in CylanceOPTICS (August 2024)
CylanceOPTICS
(August 2024)Feature | Description |
---|---|
New Windows agents | The following versions of the CylanceOPTICS agent for Windows are now available in the management console:
These releases of the CylanceOPTICS agent address a security vulnerability that is present in the .msi file for previous agent versions. For more information, see KB 139918. If you update the CylanceOPTICS agent to a version listed above using the standard update process available in the Cylance console, note that the .msi file with the security vulnerability will still be present on CylanceOPTICS devices. To update the agent and address the vulnerability, you must do one of the following:
|
What's new in CylanceOPTICS (June 2024)
CylanceOPTICS
(June 2024)Feature | Description |
---|---|
New agents for macOS and Linux |
For more information about supported operating systems, see the Cylance Endpoint Security compatibility matrix. |
Changes to OS support | This release adds support for the following operating systems:
|
Data collection enhancements for Linux | This release of the CylanceOPTICS agent adds support for Network Connect events and DNS Request and Response events for Linux operating systems.For more information, see Data structures that CylanceOPTICS uses to identify threats in the Cylance Endpoint Security Setup content. |
Protection features for the CylanceOPTICS agent for macOS | The following security features that previously were applicable only to the CylancePROTECT Desktop agent are now extended to the CylanceOPTICS agent 3.3 and later for macOS :
These features require the CylancePROTECT Desktop agent version 3.1 or later. |
New Windows agents | The following versions of the CylanceOPTICS agent for Windows are now available in the management console. These versions include the latest stability enhancements:
|
Recommendation to disable the optional Cryptojacking Detection sensor | BlackBerry recommends disabling the optional Cryptojacking Detection sensor, as we are currently investigating stability issues that this sensor can cause with the device OS. |
What's new in CylanceOPTICS (January 2024)
CylanceOPTICS
(January 2024)Feature | Description |
---|---|
CylanceOPTICS agent versions | This release includes the new CylanceOPTICS agent for Windows version 3.3.2311.0.For more information about supported operating systems, see the Cylance Endpoint Security compatibility matrix. |
Enhancements to the logic and methods that CylanceOPTICS uses to identify security threats | CylanceOPTICS 3.3 features significant enhancements to the underlying logic and methods that the CylanceOPTICS cloud services and the CylanceOPTICS agent use to identify security threats. These changes include:
|
New sensors | This release of the CylanceOPTICS agent adds three new optional sensors for Windows devices:
These sensors require the CylancePROTECT Desktop agent version 3.2 or later.For more information, see CylanceOPTICS optional sensors in the Cylance Endpoint Security Setup content. |
Data enrichment for Windows events | Previously, the CylanceOPTICS agent collected the Provider Name, Class, and Event ID facets for Windows Event artifacts. This release adds significant data collection enhancements for Windows Events, with the agent collecting the data defined in the EventData facet of the artifact (for example, this can include ObjectServer, PrivilegeList, Process ID, Process Name, Service, or other facets).For more information, see Data structures that CylanceOPTICS uses to identify threats in the Cylance Endpoint Security Setup content. |
What's new in CylanceOPTICS (August 2023)
CylanceOPTICS
(August 2023)Feature | Description |
---|---|
Enhancements to advanced query | This release introduces the following enhancements to the advanced query feature in the management console:
For more information, see Create an advanced query in the Cylance Endpoint Security Administration content. |
Considerations when upgrading from CylanceOPTICS 2.5.x to 3.x
CylanceOPTICS
2.5.x to 3.x- For configuration requirements formacOSBig Sur (11.x) or later, see the setup instructions in the Cylance Endpoint Security Setup Guide.
- If you do not set up a complete MDM profile for theCylanceOPTICSnetwork extension on devices withmacOSBig Sur (11.x) or later, data collection might not occur as expected. Verify that you satisfy the configuration requirements for MDM managed devices in the Cylance Endpoint Security Setup Guide.
- BlackBerryrecommends installing the latest available version of theCylancePROTECTagent. For more information, see the CylanceOPTICS requirements.
- OnmacOSdevices, after you upgrade theCylanceOPTICSagent you need to restart the device.
- If you upgrade theCylanceOPTICSagent on a CentOS/RHEL 8.0 or 8.1 device, you must restart the device after the upgrade is complete. (EDR-6750)
- Upgrading theCylanceOPTICSagent onLinuxfrom version 2.x to a newer version fails if Security-Enhanced Linux (SELinux) is enabled on the device. (EDR-6264)Workaround:Disable SELinux on the device before you upgrade theCylanceOPTICSagent and enable it again after the upgrade is complete.
- When upgrading theCylanceOPTICSagent onWindows, to avoid an issue with theCylanceOPTICSshutdown time taking longer than usual, disable the TDT sensor in the device policy and enable it again after the upgrade is complete. This issue does not occur if you upgrade fromCylanceOPTICSagent version 2.5.3010 or fromCylanceOPTICSagent 3.0 to a later version. (EDR-6058)