Overview
This version release of ClearSkies™ EDR includes features and enhancements which empower the detection and response of cyber, insider and third-party threats by utilizing Behavioral Monitoring and Analysis (BMA) which leverages ClearSkies™ advanced security analytics and Threat Intelligence.
What’s New
- New Functionality:
- Enhanced the detection and response capabilities with the introduction of:
- Process Tampering,
- DNS traffic monitoring for detecting C&C (Command and Control), malware and web sites hosting exploits and/or scam/phishing campaigns,
- Critical files deletion detection, and
- Office macro commands execution detection.
- Enhanced the detection and response capabilities with the introduction of:
- Other Enhancements:
- Improved performance and as a result the user experience with re-engineering of critical services of the EDR agent:
- Sysmon v13.33 update
- Watchdog Performance enhancement.
- Improved performance and as a result the user experience with re-engineering of critical services of the EDR agent:
Important Notes
Please refer to “New Features” and “Enhancements” sections for further information.