CylanceAVERT

known issues

If a user that has not been added to

Cylance Endpoint Security

logs in to a computer that has

CylanceAVERT

installed, the user will be automatically added to

Cylance Endpoint Security

.

If a user attaches a sensitive file to an email message in

Gmail

and cancels the email message before sending it, an exfiltration event will still be triggered because

Google

will upload the file to a web server regardless of the email that is being sent.

If a user quits the

CylanceAVERT

app from the

Windows

system tray, they will not receive a

Windows

notification when an exfiltration event occurs.

If a

Microsoft Outlook

personal folder file (.pst) is stored in a network drive,

CylanceAVERT

will cause your desktop to shut down or restart unexpectedly (BSOD). (DLP-8698)

Workaround

: The .pst file should be moved to a location on the desktop.

Filtering predefined templates does not display the proper results. (DLP-8285)

CylanceAVERT

does not support local users (non Active Directory users). (DLP-8262)

The Custom Time function on the "Information Exfiltration Events" widget is still usable when the function is disabled. (DLP-7663)

The following are known issues that relate to widgets:

If you click on some items on the Data Types tab for the "Top exfiltration events by category"  widget, you will be redirected to an empty events table.  (DLP-7603)
If you click on an removable media device from the "Top Exfiltration Events by Location" widget, you will be redirected to an empty events table. (DLP-7294)

During an exfiltration event involving a USB drive, the temporary copy of the sensitive file is a different size than the original file. (DLP-7494)

If

CylanceAVERT

is reinstalled on an endpoint, the device information displays the incorrect enrollment date and time. (DLP-7278)

In

Firefox

, developer tools are disabled. (DLP-6302)

If a user sets a USB or shared folder as the default location for downloads in a browser, the user may receive an exfiltration event notification even if the location where the file will be saved has not been specified. This is due to the browser creating a temp file on the USB or shared folder. (DLP-5399)

Workaround:

Do not configure a USB device or a shared folder as the default location for all browser downloads. For example, in

Chrome

, do the following:

Open
Chrome
browser.
In the search bar, type
chrome://settings/downloads
.
Under the Location section, click "Change" and choose a location that is not a USB device or shared folder.

CylanceAVERT

does not support directly synchronizing with

Microsoft Entra ID

Active Directory for user onboarding. As of the 1.0 beta release,

CylanceAVERT

only supports user onboarding using on-premises Active Directory through the

BlackBerry Connectivity Node

. (DLP-5366)

A custom data type cannot be deleted if it is used in an information protection policy. (DLP-5319)

If policies are assigned to a user, and then all of those policies are removed, the user will be deleted from

CylanceAVERT

. (DLP-5253)

You will receive an error when you check the access status of a file with a path longer than 260 characters. (DLP-5050)

The

CylanceAVERT

extension for

Google Chrome

is not immediately added after

CylanceAVERT

is installed.

CylanceAVERT

will prompt you to close the

Chrome

browser during installation. (DLP-2182)

When an administrator deletes a file from the Evidence Locker, they cannot see that the files have been removed until the file service updates the Evidence Locker. This can take up to 24 hours to complete. UI enhancements are planned for a future release to communicate this to the administrator when files are deleted. (DLP-2115)

Sensitive data is not detected when it is used in the file name. (DLP-1221)