Skip Navigation
  1. BlackBerry Docs
  2. Cylance Endpoint Security
  3. Cylance Endpoint Security Release Notes
  4. CylancePROTECT Desktop release notes

CylancePROTECT Desktop
 release notes

The following tables provide information about the new features of
CylancePROTECT Desktop
 in the management console. For the agents, information is available in their separate sections:

What's new in the management console for
CylancePROTECT Desktop
 (February 2025)

Feature
Description
Family name displayed for threat alerts
  • When you view the list of threats (Protection > Threats), the family name for an alert is now displayed at the end of the text in the classification column. When you view the threat details, the family name is displayed at the end of the text in the classification field.
  • In the Alerts view, for
    CylancePROTECT Desktop
     threat alerts, the family name is displayed at the end of the text in the classification column.
  • If you configure
    Cylance Endpoint Security
     to forward events to a SIEM solution or syslog server, threat classification events will include the family name at the end of the Threat Classification field.

What's new in the management console for
CylancePROTECT Desktop
 (August 2024)

Feature
Description
Script control for
Windows
 devices
In the script control device policy settings, administrators can now separately control how the larger scripts (for example, PowerShell scripts larger than 5 MB) are reported to the
Cylance
 console when a threat is detected. The separate setting allows administrators to focus on tuning the detection of smaller scripts, which are more likely to be malicious than IT scripts (which are typically larger in size), and enables the agent to achieve optimal blocking posture faster. You can apply the policy settings for each type of script (which includes blocking the script from running) so that these threats are managed together regardless of the size of the script. You can also manage them separately by only sending alerts to the console, or ignoring alerts for large scripts. The default setting is "Ignore large scripts".
Devices must be running
CylancePROTECT Desktop
 agent version 3.3 or later.
For more information, see Script control in the Setup content.

What's new in the management console for
CylancePROTECT Desktop
 (June 2024)

Feature
Description
USB device control for
macOS
 devices
The
CylancePROTECT Desktop
 agent for
macOS
 3.3 now supports the USB device control feature, which allows administrators to control whether to allow or block access to USB mass storage devices. Administrators can turn on device control for
macOS
 devices from the device policy for storage devices classified as USB optical drives or USB storage drives (such as hard drives or flash drives).
  • Administrators can enable this feature for devices through the device policy in the
    Device Control
     tab.
  • Devices must be running
    CylancePROTECT Desktop
     agent version 3.3 or later.
For more information, see Device control in the Setup content.

What's new in the management console for
CylancePROTECT Desktop
 (January 2024)

Feature
Description
Software inventory (
Windows
 only)
This feature allows administrators to identify applications that may be a source of vulnerabilities, prioritize actions against vulnerabilities, and address them accordingly. Administrators can view all applications installed on devices that are registered with the tenant and view a list of applications that are installed on individual devices.
  • Administrators can enable this feature for devices through the device policy in the
    Agent Settings
     tab.
  • Devices must be running
    CylancePROTECT Desktop
     agent version 3.2 or later.
  • To view a list of all applications installed on devices, navigate to
    Assets > Installed Applications
     in the console.
  • To view a list of applications on an individual device, navigate to
    Assets > Devices > Threats & Activities > Installed Applications
     in the console.
Enhanced script control using script scoring (
Windows
 only)
The
CylancePROTECT Desktop
 agent now supports enhanced script control using script scoring. Scripts that have an unsafe or abnormal threat score can be intelligently blocked from executing and alerted to the management console.
  • Devices must be running
    CylancePROTECT Desktop
     agent version 3.2 or later. Devices running unsupported agents will default to block scripts.
  • Administrators can configure the Active Script or PowerShell Script setting from the Script Control tab in the device policy to block scripts that
    CylancePROTECT
     considers to be unsafe or abnormal.
Alert mode for the use of PowerShell Console (Script control for
Windows
 only)
The
CylancePROTECT Desktop
 agent now supports Alert mode for the use of PowerShell Console in interactive mode, so that detected events are reported to the management console while still allowing them to run.
  • Devices must be running
    CylancePROTECT Desktop
     agent version 3.2 or later. Devices running unsupported agents will default to block the use of PowerShell console.
  • Administrators can control the setting from the Script Control tab in the device policy using the PowerShell Console drop-down menu.

What's new in the management console for
CylancePROTECT Desktop
 (October 2023)

Feature
Description
Background threat detection on-demand scan
Administrators can now initiate a background threat detection scan on demand from the management console.
  • Devices must be running
    CylancePROTECT Desktop
     agent version 3.2 or later.
  • The command can be sent from the Device Details screen for an individual device, or for multiple devices at once from the Devices screen.
Note that if background threat detection scans are running on several VM devices that are from the same VM host at the same time, device performance will be impacted due to resource sharing.