Dragon Platform

Comodo Dragon Platform June Release (June 3-4, 2020)

Endpoint Manager

Endpoint Manager Core

New Features

  • Ability to enforce passwords change every X days example 90 days

From now on, administrators will be able to define password expiration period for Endpoint Manager users. With this feature, the Endpoint Manager users will be forced to change their password after password expiry period is over, just like ITarian users.

Here is the wiki of this feature.

  • Support for Android 10 KNOX

From now on, we are supporting devices having Android 10 KNOX operating systems.

Bug Fixes

  • Fixed the issue of procedure not being skipped when maintenance window is in off state and option “Skip devices warned by maintenance window settings” enabled.
  • Fixed the issue of the unresponsive “Delete” button in Procedures section.
  • Fixed the issue of incorrect language on device enrollment wizard.
  • Fixed the issue of procedures being executed on all companies even if a certain company is chosen.
  • Fixed the issue of wrong search result appearing for Device Group field in Bulk Installation Package section.
  • Fixed the issue of inability to add host value in firewall rule if hostname includes numbers.
  • Fixed the issue of inability to generate quarantine report.
  • Fixed the issue of remote control not being loaded from Service Desk.
  • Fixed the issue of inability to save Antivirus section within existing profile.
  • Fixed the issue of “Old device only” filter showing incorrect results in Device List.
  • Fixed the issue of absence of “SubmitTicket” option inside Endpoint Manager agent for several devices after latest release.

Security

New Features

  • Ability to Hide/Unhide and “Show Hidden Event(s)” options will be added to Containment from Portal.

Here is the wiki of this feature.

Data Loss Prevention  

  • DLP Monitoring rules were moved to be able to be configured in ‘Configuration templates -> Data Loss Prevention’ section. All existing DLP Monitoring rules moved from profile level to portal level.

Here is the wiki of this feature.

Improvements

  • Improve Audit logs for ‘Export to csv’ actions

Here is the wiki of this feature.

Bug Fixes

  • Fixed the issue of “Filters from Security Dashboard > Device View for separate components don’t work properly”

Remote Control

New Features

●       Ability to see password expire notifications 7 days before expiry and after password expires

When a password expires, users need to change their password from Endpoint Manager to use Remote Control.  

Here is the wiki of this feature. 

Bug Fixes

  • Fixed the issue of ‘specific Chinese characters would make file transferring failed.’

Remote Monitoring and Management

New Features

  • Ability to Turn On/Off All Alerts

You will be able to enable/disable the alert mechanism for the assigned profiles, monitors, procedures.. With this feature, admin will not get any alert or Service Desk ticket for the associated devices conditions.

Here is the wiki of this feature.

Improvements

  • “New Device Blocked By Device Control” monitor to not trigger once agent is updated

The aim of this improvement is to be able to track already blocked external devices, so that when the Communication Client is upgraded, the admin will not get any alerts for already blocked external devices.

Bug Fixes

  • Fixed the issue of “View Procedure” option allowing modification in the body of procedure without clicking to “Edit” button first.
  • Fixed the issue of “Another Antivirus solution installed” condition detecting Acronis Backup Agent 12.5.15300.

Patch Management

New Features

  • Patch Approval/Disapproval Mechanism

From now on, you will have the ability to approve or disapprove any operating system or 3rd party application patch, including the option to auto-approve. This way, only approved operating system and 3rd party application patches will be applied to the endpoints.

Comodo Client Security  

Windows

New Features

Data Loss Prevention:  

  • Removable Storage Rule UI Simplification
  • CCS logs and ITSM integration extended  

Vulnerability Fixes

  • Update AV detection flows with NTFS file identification check

Bug Fixes

  • Fixed the issue of “CCS 12.2.0.8121 does not scan network paths via created scan”
  • Fixed the issue of “CCS doesn’t perform DLP discovery rules deletion from device after DLP section deletion within EM Profile”
  • Fixed the issue of “CCE scanned files are reported to ITSM as Unrecognized by CCS”
  • Fixed the issue of “Log rotation should be enabled by default in CCS config”

Service Desk

Improvements

  • Improvement for Portal Executive Ticket Summary
  • Improvement for ‘Submit ticket’ option within EM agent

Bug Fixes

  • Fixed the issue of “Ticket has paused status instead of closed”
  • Fixed the issue of “SSO transmission does not work for EM portal links within SD tickets about devices Discovering”
  • Fixed the issue of “Calendar ticket event schedule issues”
  • Fixed the issue of “Incorrect timezone under ‘Admin Panel’ -> ‘Settings’ -> ‘System'”
  • Fixed the issue of “Unable to view a date picker option in the custom form”
  • Fixed the issue of “SSO transmission does not work for EM portal links within SD tickets about devices Discovering”
  • Fixed the issue of “Unable to delete custom ticket filters – an error ‘Unable to delete selected filters’ is returned”
  • Fixed the issue of “Unable to delete custom list if it was in use with some custom forms”
  • Fixed the issue of “”Password change required to continue” after registering SD User manually with disabled option for it”

Portal

New Features

  • In order to increase account security on the Comodo ONE/Comodo Dragon platforms, 3 mandatory steps have to be taken for all users of all accounts having more than 50 devices on their accounts.
    • Verify phone number
    • Give answer to 3 desired security questions
    • Enable Two Factor Authentication 
      • via Authenticator application
      • via SMS code
  • Ability to download pdf report from the Portal-> Management -> Applications-> Billing
  • Turkish language will be supported on the platform.

APPENDIX  

New Client Versions:   

Windows Communication Client : 6.36.37891.20060

Windows Comodo Client – Security:  12.2.0.8121

Windows Remote Control : 6.36.37893.20060

Endpoint Detection and Response: 2.3.0.195 (previous)

macOS Communication Client: 6.35.37113.20040 (previous)

macOS Comodo Client – Security : 2.4.4.851 (previous)

macOS Remote Control: 6.36.37894.20060

iOS Mobile Device Management Client : 1.3.0 (previous)

Android Mobile Device Management Client: 6.16.0.7

Linux Communication Client: 6.28.26228.19060 (previous)

Linux Comodo Client – Security: 2.2.1.501 (previous)

Dragon Platform

Comodo Dragon Platform April Release (April 30, 2020)

Endpoint Manager

Endpoint Manager Core

New Features

Public API sharing – Must Have Items Part 2

We are releasing the following APIs as Part 2 of our project to release our common APIs to the public:

  • Procedures
  • Monitors
  • Alerts

These join last month’s release of our APIs for users, devices, and device group properties. 

Mark Duplicate Devices by MAC address

In addition to the device name, you can now use MAC addresses to identify duplicate devices. This improves search accuracy when devices in separate organizations or networks may have the same name.

Here is the wiki of this feature.

Bug Fixes 

  • Fixed the issue of inability to clone a profile after the account is migrated from EU region to US region.
  • Fixed the issue of CCC and CCS Branding settings are not applied.
  • Fixed the issue of global software inventory doesn’t filter software for selected companies/groups but shows software for all the customers.
  • Fixed the issue of Endpoint Manager users being unable to takeover device when 2FA is enabled.
  • Fixed the issue of maintenance windows are not available for procedures scheduling.
  • Fixed the issue of inconsistency between device statuses on Endpoint Manager portal and Remote Control application.
  • Fixed the issue of inability to reset screen passcode on iOS device through portal.

Security

New Features

  • Added ‘Quarantined Files’ tab to the Mac OS device details. You can get  a list of ‘Quarantined files’ from particular device.

Here is the wiki of this feature.

  • We improved file searches in Endpoint Manager’s Valkyrie page by adding Start/end date filters.

Data Loss Prevention:  

  • Added the ability to view logs of DLP monitoring rules.
  • Added a ‘Patterns’ column to the discovery logs detail window.
  • You can now delete or quarantine files discovered by a DLP discovery scan.
  • You can now create custom search patterns for DLP scans. Custom patterns can consist of specific keywords, keyword groups and data formats.

Here is the wiki of this feature.

Improvements

  • We started ‘Export to csv’ action in Audit logs (from all pages).
  • ‘Threat history’ became ‘Android threat history’. We continue collection all logs. But right now, all logs from Mac/Win/Linux are not available to view from Threat History page.

Bug Fixes

  • Fixed an issue of “Unable to add network path to Containment virtualization exclusions”
  • Fixed an issue of “FW blocking communication (missing cmdprots.exe in predefined file group)”

Remote Tools

New Features

  • Audit logs now record all command prompt and PowerShell actions.

Here is the wiki of this feature.

  • Admins can now choose whether to access the remote device as the current user or as a local system user. This choice is available for file explorer, process explorer, service explorer and the command interface.

Here is the wiki of this feature.

Remote Control

New Features

  • Added ability to pause and resume file transfer.
  • Added ability to suspend and resume file transfer session. 

Here is the wiki of this feature.

Bug Fixes

  • Fixed an issue of “Takeover failed to start.Connection data is invalid.” while connecting to macOS devices.

Remote Monitoring and Management

New Features

Procedures for Mac OS

You can now create, run and schedule procedures on MacOS devices. 

Here is the wiki of this feature.

Set Alias or Friendly Name for Network Devices

You can now change network device names to memorable/understandable names.

Here is the wiki of this feature.

Patch Management

New Features

Enable / Disable Patch Management from Profiles

You can now disable all patch management operations in active profiles. Admins can disable all updates/installations via:

  • On-demand patch installations
  • Scheduled patching operations
  • Patch installations via procedures

Here is the wiki of this feature.

Bug Fixes

  • Fixed the issue of patches being applied outside maintenance windows.

Reporting

New Features

Customer Assessment Report

The customer assessment procedure lets you quickly evaluate the security of your managed Windows endpoints. The procedure generates a report which summarizes the following:

  • Device Vulnerability: List of operating system and 3rd party patches that need to be installed
  • Endpoint Security: Details of malware and unknown files found on devices.
  • Phishing and Internet Risks: Test whether your endpoints can connect to harmful websites.
  • Comodo Agent: An overview of which Comodo agents are installed on your endpoints. 

 Here is the wiki of this feature. 

Comodo Client Security  

Windows

New Features

Data Loss Prevention:

  • New DLP monitoring rule lets you block users from taking screenshots while specific applications are running. This is useful for applications which are known to handle sensitive data.
  • Added ability to create custom search patterns for DLP scans. As mentioned in the Endpoint Manager section earlier, custom patterns can consist of specific keywords, keyword groups and data formats.
  • Added search support for more file types to discovery rules.

Here is the wiki of this feature.

Bug Fixes

  • Fixed an issue of “Connection to NAS via VPN is not possible via SMB2/SMB3 with CCS installed”
  • Fixed an issue of “Device gets very slow with CCS and Windows classic shell”

Service Desk

Bug Fixes

  • Fixed the issue of “While trying to bulk close or delete tickets in the Open tickets screen, the tickets close/delete but it redirects to the login screen.”

New Client Versions:   

Windows Communication Client : 6.35.37275.20040

Windows Comodo Client – Security:  12.2.0.8121

Windows Remote Control : 6.35.37178.20040

Endpoint Detection and Response: 2.3.0.195

macOS Communication Client: 6.35.37113.20040

macOS Comodo Client – Security : 2.4.4.851

macOS Remote Control: 6.35.37179.20040

iOS Mobile Device Management Client : 1.3.0 

Android Mobile Device Management Client: 6.15.0.10

Linux Communication Client: 6.28.26228.19060

Linux Comodo Client – Security: 2.2.1.501

Dragon Platform

Comodo Dragon Platform March Release (March 14, 2020)

Endpoint Manager

Endpoint Manager Core

New Features

Forward Audit Logs to SIEM tools

  • You can now forward audit logs to a SIEM server, emulating the existing feature in CCS.
  • Users can configure syslog forwarding at ‘Settings’ > ‘Portal Set-Up’ > ‘Logging Settings’ > ‘Audit Logs’.

More Granular RBAC for devices, device groups, and remote control

  • We improved role based access control (RBAC) for device operations, and to differentiate device operations with remote control permissions:
    • Updated the description of the “users.allow-portal-login” permission.
    • Device group permissions now have a more granular structure:
      • Create
      • Rename
      • Delete
      • Assign
  •   Remote control permissions now have a separate structure with the following permissions:
    •   Takeover,
    • File-Transfer,
    • File-Transfer(Upload),File-Transfer(Download)

…and more granular RBAC for procedures

  • We separated alerts and procedure management controls. Procedures now have the following sub-permissions:
    • Create Procedure
    • Delete Procedure
    • Edit Procedure
    • Approve Procedure
    • Execute Procedure
    • Export Procedure List
  • Alerts now have the following, separate, permissions:
    • Read only > configuration.alerts
    • Full Control > configuration.alerts, manage

Results per Page Option for Device Tree

  • You can now view device tree with additional pagination options, as you can already in the regular device list. Users can now limit the device tree results with the following number of item options:
    • 20
    • 50
    • 100
    • 200

Added support for Ubuntu 19.0             

  • Endpoint Manager clients now support devices using Ubuntu 19.04.

Public API Sharing – Must Have Items Part 1

  • We aim to make all our common APIs public. This release sees stage 1 of this process, with the release of APIs for:
    • Users
    • Devices
    • Device Group categories

Dark Mode for Android MDM Client

  • Devices on Android 10+ can now switch to the MDM client to dark mode.

Improvements

CCS – End of Support for Windows 7

  • In line with Microsoft policy and security best practices, we are ending official support for CCS on Windows 7 devices. We encourage all customers to upgrade their Windows based systems to Windows 8 /8.1/ 10.
  • CCS on Windows 7 will continue to work up-to previous version. New versions of CCS will not be supported.
  • The following operating systems are affected:
    • Windows 7
    • Windows Server 2008 R2

Bug Fixes

  • Fixed the issue of Windows Communication Client breaking during upgrade.
  • Fixed the issue of “Installed Apps” tab not opening for macOS devices on portal.
  • Fixed the issue of Windows devices with Comodo Internet Security installed are considered in count within “Advanced Endpoint Protection” in “Bill Forecast” page on the License Management section.
  • Fixed the issue of RMMService.exe using too many UDP ports on Windows Server 2012 R2.
  • Fixed the issue of ITSMService.exe not present after deploying the latest version of Windows Communication Client.
  • Fixed the issue of widget statistics numbers don’t matching up.
  • Fixed the issue of ITSMService.exe initiating random restart of endpoint.
  • Fixed the issue of resetting screen passcode on iOS device through portal doesn’t work.
  • Fixed the issue of iOS enrollment email not properly displayed on Safari 601.1 (iOS9.3.5)
  • Fixed the issue of entered user credentials disappearing from DEP profile Setting after navigating across DEP profile tabs.

Security

New Features

  • Profile Section Addition with Default Settings – Windows profile (HIPS/Antivirus/Containment sections): Import profile settings while adding new section
  • You can now schedule virus scans on specific days of the week in a Windows profile.
  •  AV usability improvements,  Windows: On demand items request operation from portal: Quarantined items

Data Loss Prevention:

  • You can now populate keyword groups by importing keywords from a file. This, for example, allows customers to populate the ‘Names’ group with a list of client users or employees.
  • New DLP monitoring rules let you block users from copying or moving files to USB devices.
  • Added ‘Quarantine’ action to DLP discovery rules. This lets admins isolate files containing sensitive information to prevent their exfiltration while a review of the files is in progress.

Remote Control

New Features

  • Added ability to use the command prompt and PowerShell to manage remote devices:
    • You can connect to the commands interface of the remote device
    • You can run commands in the remote device’s command prompt
    • You can run commands on the remote device’s PowerShell 
  • Added file versioning to file transfer operations. Endpoint Manager can now rename files that have the same name as a file on the remote machine, adding a version number to the name of the new file. This allows admins to retain both versions of the file on the destination.

Remote Monitoring and Management

New Features

Clone Monitors

  • Users can now clone generic and network monitors

SNMP Monitoring: Performance and Disk Monitor

  •  Admins can now retrieve the following device information over SNMP:
    • Performance
    • CPU Usage
    • RAM Usage
    • Disk
    • Free space left on the system drive
    • Free space left on all drives
    • Free space change on the system drive

Run Procedures on device groups and customer

  • Admins can now run procedures on all devices belonging to a customer or to a group. You can run procedures on:
  • Device groups
  • User groups
  • Customers

Bug Fixes

  • Fixed the issue of scheduled procedures being executed outside of the maintenance window.

Patch Management

New Features

Security Vulnerability Notifications

  • Added recipient logic for ‘Security Vulnerability’ notifications.

Improved patch information

  • Patch Management interface now shows the most recent successful and failed patch scans dates for OS and 3rd party patches.

Comodo Client Security

Windows

New Features

  •  Maintenance mode for Windows 7

Data Loss Prevention

  • Delete and quarantine actions added to DLP discovery rules
  • New DLP monitoring section lets admins block files from being copied to USB devices.

New Features

  • Comodo Client Security Mac – Added support for MacOS Catalina

Bug Fixes

  •  Fixed an issue with antivirus database updates run from the device itself
  •  Fixed an issue with diagnostic utility reports
  • CCS 11.6.1.7849 high CPU usage on Windows Server 2019
  • Diagnostic utility reports errors and can not fix them for CCSM 2.4.4.844

Service Desk

Bug Fixes & Improvements

  • Departments access scope doesn’t work in Itarian/C1 Mobile
  • Audit logs do not display SD events
  • Participants are included in the ‘To’ and ‘CC’ fields in Incoming Emails are not added automatically as Collaborators
  • Tickets with ‘ character sent using CCC tray icon are not created on SD side
  • Ticket Details form Limitation will reach up to 20
  • Unable to delete custom list if it was in use with some custom forms

Portal

New Features

Managed Detection and Response (MDR) added to the ‘Store’ area

  • Managed detection and response (MDR) is a 24/7 threat monitoring solution that delivers 24/7 protection against threats emerging on your network. MDR combines advanced technologies at the host and network layers with continual supervision and threat investigation from Comodo’s team of human security experts. 

Technology Assessment Platform (TAP)

TAP moves to full release

Following last month’s beta of the product, we are proud to launch the full version of the Technology Assessment Platform (TAP) with the March release. TAP helps MSPs audit client networks and generates detailed reports which grade the customer on each aspect of their set-up. The reports form an action-plan to address gaps in their coverage which you can share with your customers.

We also added the following new improvements for the full release:

  • You can now customize the default questions for each of your customers. This allows you to easily construct a questionnaire tailored to the precise needs of your client.
  • Redesigned the final reports to make them even more professional, informative and easier to understand. In future releases will we add the ability to rebrand these reports.
  • Complete interface redesign and more informative dashboard stats. TAP has a fresh new look we think you’ll like.

 Customers can access TAP as follows:

  • Log in to your C1/Dragon/ITarian account
  • Click ‘Applications’ > ‘Technology Assessment Platform’
  • Login to TAP with the same credentials you use for C1/Dragon/ITarian
Dragon Platform

Comodo Dragon Platform January Release (Jan. 18, 2020)

Endpoint Manager

Endpoint Manager Core

New Features

Mac OSX Catalina Support

Endpoint Manager now supports Mac OSX 10.15 Catalina

Improved processes for old and duplicate devices

Changes made to the device list to help admins identify and deal with old/duplicate devices.

●       Exclamation mark added to old/duplicate devices in the device list

●       Audit logs created when an old/duplicate device is removed

●       New filter added to the device list for old/duplicate devices

●       Customize the length of time that must pass before a device is flagged as ‘old’. 

●       Customize the length of time that must pass before Endpoint Manager removes old devices

●       New removal options for duplicate devices.

Department Sync with Service Desk

Users can now select departments marked as ‘Public’ in Service Desk when configuring alert settings, or when submitting a ticket via the CCC tray icon.

●       ‘Configure departments for ticket submission’ added to ‘Profiles’ > ‘UI Settings’ > ‘General Settings’ > ‘Show communication client tray icon’. This allows admins to choose which departments users can submit tickets to via the CCC tray icon.

●       New synchronization button option added to ‘Alerts’ > ‘Alert Settings’. Improvements made to the ‘Open tickets under’ field.

Here is the wiki of this feature.

Forward CCC logs to SIEM tool

You can now forward CCC logs to a SIEM server, emulating the feature already available for CCS.

●       Choose which CCC logs are stored locally.

●       New options add to ‘Profiles’ > ‘Logging Settings’ > ‘Communication Client’ tab which let you forward logs to your desired servers.

Dark Mode for iOS MDM Client

iOS clients on devices with iOS 13+ can now switch to Dark Mode

Security

New Features

Data Loss Prevention:

New discovery scans allow you to audit and control sensitive data on a network. Discovery rules let you scan for specific document types and patterns, and to create scan exclusions. We also added discovery scan logs.

Improvements

Split the ‘Unrecognized and Quarantined files’ scan into 2 separate scans. This allows admins to run highly targeted scans which are relevant to their needs.
Here is the wiki of this feature.

Remote Control

New Features

●       Added ability to cancel ‘in-progress’ uploads or downloads in the file transfer feature

●        Added ability to drag and drop files between local and remote machines

●         Added ability to select and delete multiple files

●          Added ability to search and sort files and folders

●            File transfer dialog now closes automatically once the transfer is complete

Here is the wiki of this feature.

●       Added Mac OSX Catalina support

Remote Monitoring and Management

Bug Fixes

  • Fixed the issue of RMMService using x86 architecture download link for x64 applications while performing software upgrade operation
  • Fixed the issue of RMMService running at 25% CPU constantly.
  • Fixed the issue of monitoring tickets not being closed automatically when metrics goes down below threshold.

Patch Management

New Features

Added ‘Reboot Pending’ status to patch manager

New ‘Reboot Pending’ status informs you that a device needs to be restarted for the patch to become effective.

Bug Fixes

  • Fixed the issue of incomplete logs for third party application installations.
  • Fixed the issue of third party patch procedure failing on Microsoft OneDrive.

Comodo Client Security

Windows

New Features

●       Split ‘Unrecognized and quarantined files’ scan into two separate scans

●       Schedule antivirus scans on specific days of the week.

Data Loss Prevention:

New discovery scans allow you to audit and control sensitive data on a network. Discovery rules let you scan for specific document types and patterns, and to create scan exclusions. We also added discovery scan logs.

Vulnerability & exploit fixes

●       Identify the digital signature level of a newly created system process.

●       Identify the parent process of any new system process.

Bug Fixes

●       CCS no longer causes system restore operations to get stuck at ‘System restore is restoring the registry’.

●       Fixed bug that prevented users from saving Excel docs to a network folder when CCS 11.5 is running.

●       Fixed bug that caused device control to function incorrectly when scan removable media is enabled.

●       Fixed issue that caused application delays and errors when containment is enabled.

●       Fixed issue that caused some devices to freeze if CCS 11.6.1.7849 is installed.

●       Fixed bug which caused CCS to report all files scanned by CCE as ‘Unrecognized’, instead of their true trust rating.

●       Fixed incorrect timestamps after running a Comodo reputation DB update.

●       Fixed issues that caused high CPU and RAM usage by cmdagent 11.7.0.7899.

●       Fixed bug that prevented CCS updates via Squid if authentication was enabled.

●       Fixed bug that caused CCS antivirus and firewall to remain in the WMI Security Center namespace after uninstalling CCS on Windows 10.

Portal

New Features

● As part of improving our platform and our customers accounts security, the utilization of 2 Factor Authentication mechanism is mandatory from now on.

● ‘Secure DNS Filtering’ product rebranded as ‘Comodo Secure Internet Gateway’.

Bug Fixes

  • Fixed the issue of not being able to generate Executive Windows Antivirus Report.

New Client Versions:

Windows Communication Client: 6.33.34325.20010
Windows Comodo Client – Security: 12.0.0.7959
Windows Remote Control: 6.33.34183.20010
Endpoint Detection and Response: 2.3.0.195 (previous)
macOS Communication Client: 6.33.34270.20010
macOS Comodo Client – Security: 2.4.4.844 (previous)
macOS Remote Control: 6.33.34199.20010
iOS Mobile Device Management Client: 1.3.0
Android Mobile Device Management Client: 6.14.0.13
Linux Communication Client: 6.28.26228.19060 (previous)
Linux Comodo Client – Security: 2.2.1.495 (previous)

Dragon Platform

Comodo Dragon Platform Hot fix (Dec. 09, 2019)

Service Desk

Improvements

  • Ability to create flexible time sheet

Bug Fixes

  • Fixed the issue of “There is no ability to use % symbol instead of IP address octets except the latest octet for SD API”
  • Fixed the issue of “Service Desk roles cannot be deleted”

Version: 4.23.4

Dragon Platform

Comodo Dragon Platform December Release (Dec. 07, 2019)

Endpoint Manager

New Features

More Granular Role Management

Updates to the role management interface include:

  • Permissions page is now more clearly organized
  • New ‘Read Only’ permission
  • Overall improvements to roles UI 

Here is the wiki of this feature.

‘Read Only’ mode added to roles

Added as a master-switch on the permissions screen, ‘read only mode’ allows users to view pages in Endpoint Manager, but not makes changes nor download reports.

Separate Proxy Settings for CCC & CCS

You can now configure separate proxy settings for the communication client and the security client. Previously, both clients had to use the same settings.

Support for Android 10

Endpoint Manager now supports mobile devices which use Android 10 OS (KNOX is excluded)

PCI – DSS Compliance Data Aging

You can now to store logs for up to 1 year, in compliance with PCI – DSS regulations.

The following data will be stored:

  • Audit Logs
  • Thread History
  • Security Dashboard 

Export License Details

Can now export license data from the following pages:

  • License Management’ > ‘Licenses’ tab – export details about all licenses on the account
  • ‘License Management’ > ‘Licenses’ tab > ‘Details’ > ‘Customers’ – export details of how seats on a single license are distributed among various customers

Here is the wiki of this feature.

New restriction added to iOS profiles

Added ability to disable personal hotspots on iOS devices.

Improvements

XMPP server replacement

We are upgrading our XMPP solution in order to offer you a better service.

Bug Fixes

  • Fixed the issue of showing wrong Maintenance Window in procedure scheduler settings
  • Fixed the issue of inability to deploy msi package throug “Install Custom MSI/Packages”
  • Fixed the issue of ITSMService forcing reboot with 300 seconds delay for patch procedure with “Warn about the reboot and let users postpone it” option if user is not logged in.
  • Fixed the issue of not being able to display “Upgradable Devices” for 3rd party applications if certain device group is selected.
  • Fixed the issue of ITSMService 6.30 crashing rarely.
  • Fixed the issue of multiple Comodo Client – Security update command from portal and scheduled rule.

Security

New Features

Scan DLLs loaded by processes

Added new option, ‘Monitor DLL files loaded by running processes’, to ‘Advanced Protection’ > ‘Miscellaneous’

Improved Windows Boot Protection

Comodo Client Security (CCS) now monitors untrusted DLLs & autoruns before the CCS service launches. This includes untrusted apps and unknown PE files which attempt to load via system vulnerabilities.

Add virtual desktop support for the ‘Windows Fax and Scan’ application

Windows fax and scan can now access COM/DCOM interfaces direct from the virtual desktop.

Additional Valkyrie options

Added ability to submit files for ‘Automated and human-expert analysis’. This option is available if you have a premium Valkyrie license.

Removal Tool

New tool allows you to quickly uninstall Comodo Client Security.

Protected Objects in Containment Section

Ability to add protected data and registry keys in the containment section

Bug Fixes

Fixed the issue of inability to add Protected Registry Keys in HIPS rules

Remote Control

New Features

  • You can now tell the remote control tool to revert to a direct internet connection if your proxy server fails.
  • Added 2 Factor Authentication for Endpoint Manager logins on Remote Control application.
  • You can now create favorite folders and view recent directories in the file transfer window.
  • Improved logs for the remote tool application.

Bug Fixes

  • Below issues have been fixed on the Audit Log section;
  • Incorrect “End/Duration” Session value 
  • Incorrect “Type” and “Status” value
  • Name of deleted files was absent in old value for Remote tools delete event
  • Incorrect “Session Start/End/Duration” value
  • Old Value column in “Session connection type” has “None” Status

Remote Monitoring and Management

New Features

You can now monitor the following items on Mac OS devices:

  • Online/Offline Status
  • Performance
    • CPU
    • RAM
    • Network Usage
  • Disk Usage
  • Process

Here is the wiki of this feature.

Active Directory Discovery

New discovery feature locates any unenrolled devices in your Active Directory (AD) network. You can run AD discovery scans with or without a probe device.

Here is the wiki of this feature.

Bug Fixes

  • Fixed the issue of a monitor still being triggered after it is removed.
  • Fixed the issue of getting “Package configuration not found” error upon trying to install 3rd party application patch.
  • Fixed the issue of not showing installed devices when 3rd party application name has ampersand sign (&).

Patch Management

Improvements

  • Expanded the database of CVEs in the vulnerability management tab (‘Applications’ > ‘Vulnerability Management’)

Comodo Client Security

Windows

New Features

  • Added ability to start scans from a scan profile
  • Changes to client security UI
  • Removed ‘Open Logs’ task (red square)
  • Removed ‘Open Advanced Settings’ task (red square)
  • Added ‘Logs’ button (green square).
  • Changes to the ‘Home’ and ‘Tasks’ screens.

Vulnerability & exploit fixes

Option to prohibit shared resources for contained applications

Check full path of a newly created SYSTEM process

Bug Fixes

  • Full scan aborted – cavwp.exe crashes on Windows 10×64
  • Application crashes when it is started in Containment via right click
  • Virtual desktop prompt is split when 2 screens are connected
  • Unable to start browsers in containment
  • CCS does not start “Antivirus Update” operation by “COMODO Signature Update” scheduled task
  • AV scan doesn’t log embedded code detected in autorun items correctly
  • Unable to print from IE 11 from VDT

Portal

New Features

  • You can now resend staff activation emails from ‘Management’ > ‘Staff’
  • CCS removal tool added to the ITarian ‘Tools’ page.
  • You can now remove or hide purchased modules from the store interface.
  • Added support for the following languages:
  • Dutch
  • Spanish
  • Japanese
  • Italian

New Client Versions:

Windows Communication Client:6.32.33070.19120
Client – Security: 11.7.0.7899
Remote Control: 6.32.32936.19120
Endpoint Detection and Response: 2.3.0.195
macOS Communication Client: 6.32.32857.19120
Client – Security: 2.4.4.844
Remote Control: 6.32.32964.19120
iOS Mobile Device Management Client: 1.2.27
Android Mobile Device Management Client: 6.14.0.13
Linux Communication Client: 6.28.26228.19060
Client – Security: 2.2.1.495

Dragon Platform

Comodo Dragon Platform Hot fix (Nov. 22, 2019)

Service Desk

  • Fixed the issue of “My time sheets >Status Not Submitted” displays all time-sheets instead of only the ones belonging to the logged in user.
  • Fixed the issue of Help Desk account confirmation E-mail includes Itarian links. 
  • Fixed the issue of ability to use % symbol instead of IP address octets except the latest octet for SD API.
  • Fixed the issue of when “Automatically close the ticket if the metrics go below the threshold” option is enabled tickets are not being closed. 

Version: 4.23.3

Dragon Platform

Comodo Dragon Platform Hot fix (Nov. 16, 2019)

RMM & PM

  • Not being able to edit monitors from custom folder.
  • RMM service 6.31.30471.1900 crashes because of access violation when IPC connection is lost.
  • RMM service doesn’t return error message for already installed patches when patch procedure is executed.
  • Security Client Events Monitor with condition “Comodo Client Security communication error occured” not being properly triggered.
  • RMM service crashing on Windows 7 x64 devices during searching of updates with latest Communication Client.
  • Inability to save procedure section within profile.
  • RMM service termination on Windows 10 x64 device.
  • RMM service not using custom scripts for third party software uninstall operations.

Version: 6.31.3

Remote Control / Remote Tools

  • Fixed the issue of CTRL + ALT + DELETE shortcut prompting deletion of highlighted item on the remote machine.

Version:6.31.1

PM & ITSM Core

  • “# of used seats” field is removed from License Summary notification email.
  • Fixed the issue about not being able to redirect to https://idmsa.apple.com.
  • Fixed the issue about creating wrong enrollment link upon choosing “Enroll and Protect” option in device enrollment section.
  • Fixed the wording on Communication Client Update settings when choosing “On selected days” for update frequency.
  • Fixed the wording on ticket emails which are created by monitors.
  • Fixed the wording on “Create User” section.

Version: 6.31.2

Cyber Security

  • Ability to Add EDR Agent to Bulk Installation Package

Version: 6.31.1

Dragon Platform

Comodo Dragon Platform Hot fix (Nov. 08, 2019)

Service Desk

  • Ticket Scheduling Problem
  • E-mail Templates Saving Changes
  • SD Logging Out when Closing Tickets

Version: 4.23.2

Dragon Platform

Comodo Dragon Platform Hot fix (Oct. 25, 2019)

RMM & PM

  • Ability to manage (enable/disable) notifications about Security Vulnerability within EM Portal

Version: 6.31.2

Service Desk

  • Staff panel was not directed to “Open Tickets” page
  • Mail Fetch Failure Alert is not received if custom SMTP is used

Version: 4.23.1

Dragon Platform

Comodo Dragon Platform Hot fix (Oct. 19, 2019)

Comodo Client Security

Windows

Release Notes:

Vulnerabilities & Exploits fixes:

  • Preventing unsigned DLLs from loading into CCS processes – Windows 7
  • Add possibility to restrict containment processes from reading other processes memory
  • Containment should protect consumer PC, processes that runs on it and process memory as well from suspicious entities

Windows Client – Security Version: 11.6.1.7849

Dragon Platform

Comodo Dragon Platform October Release (Oct. 12, 2019)

Endpoint Manager

Endpoint Manager Core

New Features

Fallback connections for proxy servers

You can now tell CCC and CCS to use a direct internet connection if your proxy server is not reachable for any reason.

Two-factor authentication on standalone Endpoint Manager

Two-factor authentication has been an option on Comodo One portals for some years now. With this release, we extend the feature to the standalone version of Endpoint Manager.

Endpoint Manager admins can now:

  • Force two-factor authentication for all Endpoint Manager users
  • Enable two-factor for themselves
  • View the status of two-factor authentication on all user accounts
  • Reset two-factor authentication if there are issues

Flag and remove options for old and duplicate devices

New device management options allow admins to:

  •  Filter duplicate devices
  •  Define a time period after which inactive and duplicate devices will be removed from Endpoint Manager

Support for iOS 13

Endpoint Manager now supports mobile devices running on iOS 13.

Change Passwords Manually

You can now manually reset an Endpoint Manager user account password. Admins can now specify, or auto-generate, a new password on behalf of users.

Security

New Features

Shellcode injection moved to Miscellaneous tab

The shellcode injection option has been moved from the HIPS section of a Windows profile, to the ‘Miscellaneous Settings’ section.  This was done for consistency with the Windows security client (CCS)/

 ‘Skipped’ status added to antivirus logs

Antivirus logs in the security dashboard now state ‘Skipped’ if a file was not scanned. The new description is more useful for troubleshooting purposes than the previous description of ‘Unknown’.

Ability to restore disabled services, autoruns and scheduled tasks

You can now view all disabled services, autoruns and scheduled tasks in the ‘Antivirus’ area of Endpoint Manager. Admins can re-enable these items on selected devices, or all devices.

Remote Control

New Features

Proxy Configuration Fallback

Admins can now have the Remote Control tool revert to a direct connection if their proxy is unavailable.

 File Transfer Improvements

The latest release sees the following incremental improvements to remote file transfers:

  •  Select and transfer multiple items.
  • Single-click remote files/folders to rename them
  •  ‘Transfer Logs’ have been added to the ‘Audit Logs’ section.

Bug Fixes

  •  Fixed occasional connection errors when using remote tools in the Endpoint Manager portal.
  • Fixed issue that prevented Comodo Remote Control sessions when a maintenance window was active on target devices.

Remote Monitoring and Management

New Features

Procedure workflows:

  • You can now receive reports after a procedure is successful on targeted devices.
  • More details about a failed procedure have been added to auto-generated Service Desk tickets.

Improvements

  • Hidden procedure execute for support admin account.
  • Redesigned storage structure.
  • Improve logging mechanism for network discovery.

Bug Fixes

  • Fixed bug which caused the RMM service to crash (specifically RMMService 6.30.29303.19090)

Patch Management

New Features

OS patching on vulnerable devices

  •  Admins can now install operating system patches on at-risk/vulnerable devices.

Improvements

  •  Improvements to the patch manager log collector

Bug Fixes

  • Fixed a procedure execution issue related to logged in users
  • Fixed issues related to Microsoft Teams collaboration software
  • Fixed bug that caused Endpoint manager to mistakenly show supported software as unsupported.

Comodo Client Security

Windows

 New Features

Scan DLLs loaded by processes

  • Added new option, ‘Monitor DLL files loaded by running processes’, to ‘Advanced Protection’ > ‘Miscellaneous’

Improved Windows Boot Protection

  • Comodo Client Security (CCS) now monitor untrusted DLLs & autoruns before the CCS service launches. This includes untrusted apps and unknown PE files which attempt to load via system vulnerabilities.

Scan from VDT session or via ‘Windows Fax and Scan’ application 

  • Added  list for application which allowed to access COM/DCOM unrestricted from containment and be a part of configuration.   

Monitor Un-trusted DLLs & autoruns before CCS service launches

  • Added new option “Use direct connection if proxy is unreachable”  the Proxy and Host settings.

Two-factor authentication added to Unknown File hunter (UFH)

  • After setting up 2FA in the portal, users will also be able login to UFH with the same system of Google Authenticator codes.

 Vulnerability Fixes

  •  Refactoring to resolve CVE-2019-14694
  •  Contained applications are now prohibited from accessing power options
  • Unsigned DLLs can no longer load into Comodo Client Security processes. Supported on Windows 8+
  • Added ability to prevent contained processes reading the memory of other processes. 

Bug Fixes

  • Full scan aborted – cavwp.exe crashes on Windows 10×64
  • Application crashes when it is started in Containment via right click
  • Virtual desktop prompt is split when 2 screens are connected
  • Unable to start browsers in containment
  • CCS does not start “Antivirus Update” operation by “COMODO Signature Update” scheduled task
  • AV scan doesn’t log embedded code detected in autorun items correctly

Service Desk

Bug Fixes

  • Post a reply issue from the browser on Service Desk
  • New SD users created via Helpdesk portal are not getting activation/verification e-mails automatically right after registration
  • Wrong error message appears creating new ticket with wrong e-mail format
  • Ticket Data and Executive Ticket Summary Report don’t receive data from SD
  • “Add New Field” button doesn’t work when editing the CUSTOM FORM “Ticket Details”

Client Versions

  • Windows Communication Client 6.31.30518.19100
  • Windows Client – Security 11.6.0.7829
  • Windows Remote Control 6.31.30444.19100
  • MacOS Communication Client 6.31.30316.19100
  • MacOS Client – Security 2.4.4.844
  • MacOS Remote Control 6.31.30425.19100
  • Linux Communication Client 6.28.26228.19060
  • Linux Client – Security 2.2.1.495
  • Android Mobile Device Management Client 6.13.8.2
  • iOS Mobile Device Management Client 1.2.27
Dragon Platform

Comodo Dragon Platform September Release (Oct. 07, 2019)

Endpoint Manager

Endpoint Manager Core

New Features

Onboarding Wizard for Enrollment

We redesigned the enrollment process to make it easier to add new devices. You can now enroll and protect your device in a single wizard. 

Admins now have the option to ‘Enroll’, ‘Protect’, or ‘Enroll + Protect’ when adding new devices. You can pick different options for individual devices, or different options per operating system. 

Apple DEP Integration 

Endpoint Manager now supports Apple’s Device Enrollment Program (DEP), an important boon for customers who manage devices in the Apple ecosystem. DEP simplifies the previously complex procedure of enrolling and managing MAC/iOS devices, reducing the number of steps required before a device is ready for use. 

From the September release onwards, iOS devices that are managed over DEP will be synced automatically with Endpoint Manager.

  • Sync and manage iOS devices from Apple DEP
  • Manage enrollment and notification settings of Apple DEP
  • Add, remove or renew Apple DEP tokens on Endpoint Manager.

For more information about Apple DEP, please visit https://www.apple.com/business/site/docs/DEP_Guide.pdf

Security

New Features

Virtual Desktop events

You can now view virtual desktop logs in the ‘Event View’ tab of ‘Security Dashboards’.

 Virtual Desktop Status in Device List

New ‘Virtual Desktop’ column added to the device list. There are three icons to indicate the status of the virtual desktop on the endpoint:

  • Virtual Desktop is running
  • Virtual Desktop is not running
  • Virtual Desktop is not supported

Disable realtime scans on network files – Mac OS profiles

In the last release, we added a setting to MAC CCS to disable automatic scans on network items. We have now added the same setting to MAC OS profiles in Endpoint manager. This means the feature can be more easily rolled out to all managed endpoints.

“Real time virus scans are now optional for items on shared network drives. This can improve performance by eliminating needless scans on write-restricted files. If an endpoint does not have the rights to delete/quarantine files in a shared folder anyway, then there is little reason to scan them at this point. Any files copied to the endpoint will, of course, still be scanned locally.”

Device tree added to Security Dashboard pages

A much requested quality-of-life feature, the new device tree lets you view events, and take actions, on specific device groups.

Remote Control

New Features

ITSM Service Inventory

New feature lets you silently connect to a managed endpoint to manage the local service inventory.

Added multi-language support to the Remote Control app

You can now use the Remote Control app for Mac and Windows devices in German, French, Portuguese and Chinese.

Bug Fixes

  • Fixed device takeover error messages.

Remote Monitoring and Management

New Features

 SNMP Monitoring

You can now use SNMP monitoring to monitor network devices as well. It is now also possible to:

  • Manage devices which are found on the network
  • Create profiles for network devices
  • Create monitors for network devices.

 Auto Enrollment for Network Devices

You can now define auto-enrollment preferences for network discoveries.

Clearer, Filterable, Exportable Procedure logs

You can now email scheduled procedure logs. The details in the logs themselves have also been improved.

Bug Fixes

●       Fixed issue that prevented patching from working properly in some cases

●       Fixed bug that caused software inventory scans to take an abnormally long time

●       Fixed bug that caused disk space monitors to produce a false positive.

Patch Management

New Features

CVE Visibility – Vulnerability Management

You can now view CVE details about issues affecting vulnerable devices.

Bug Fixes

● Fixed an issue where MSI errors during a 3rd party patch operation were not getting reported in the Endpoint Manager UI.

● Fixed an issue that caused Endpoint Manager to show the wrong number of installed/uninstalled patches. 

Comodo Client Security

Windows

New Features

  • Website filtering. New feature automatically detects and blocks harmful websites, improving online security for endpoint users.
  • Detailed parent process logging. CCS logs now show the parent process of applications blocked by the containment module.
  • Macro script monitoring. The antivirus now monitors the execution of macro scripts and blocks malicious behaviour.

Improvements

  • Confirmation message shown when attempting to exit the Virtual Desktop. You now have the option to show a confirmation message to end-users if they try to close the virtual desktop. This is to help ensure users do not accidently leave a virtual session.
  • ‘Ok’ button added added to the ‘PIN’ popup that is shown when the Virtual Desktop starts. The button allows the user to close/hide the PIN popup.
  • Added option to force users to scroll to the end of the Virtual Desktop Disclaimer.
  • Virtual Desktop sessions now have a maximum time expiry time of 24 hours.
  • %USERPROFILE%\Downloads\* folder has been removed from the ‘Shared Spaces’ file group. This location could potentially contain valuable user information.

Service Desk

Bug Fixes

  • Fixed the issue of unable to enable/disable Admin Email
  • Fixed the issue of wrong SLA warning levels
  • Fixed the issue of error messages for uploading over sized pictures
  • Fixed the issue of multiple attachment showing problem

APPENDIX-1  

New Client Versions:

  • Windows Communication Client  6.30.29304.19090
  • Windows Client – Security 11.5.0.7759
  • Windows Remote Control 6.30.29237.19090
  • MacOS Communication Client 6.30.28366.19090
  • MacOS Client – Security 2.4.4.844 (previous)
  • MacOS Remote Control 6.30.29238.19090
  • Linux Communication Client 6.28.26228.19060 (previous)
  • Linux Client – Security 2.2.1.495
  • Android Mobile Device Management Client 6.13.8.2 (previous)
  • iOS Mobile Device Management Client 1.2.27 (previous)
Dragon Platform

Comodo Dragon Platform July Release (Jul. 13, 2019)

Endpoint Manager

Endpoint Manager Core

New Features

Proxy Mechanism for Clients

You can now specify local endpoints as proxies from which other endpoints can collect installation packages and database updates. This helps save network traffic and accelerates package deployment when a large number of endpoints are involved.

You distribute the following packages with this feature:

  • Comodo Communication Client
  • Comodo Client Security
  • Virus database updates

You can define the maximum amount of traffic to be used for package distribution, and the maximum number of proxy endpoints.

Here is the wiki of this feature.

Bug Fixes

  • Fixed the issue of auto-remediation procedure triggers despite it is disabled in monitor settings on portal.
  • Fixed the issue of MacOS Communication Client connection failure.
  • Fixed the issue of maintenance window being shown as “OFF” while it is actually in the preset interval.
  • Fixed the issue of location tracking for mobile devices.
  • Fixed the issue of download servers from security profile not being applied to client immediately.
  • Fixed the issue of translation inconsistencies for Remote Control and Remote Tool settings in profiles.
  • Supported Device Platforms page is updated in order not to cause disinformation.

Security

New Features

Virtualization Exclusions for Removable Media

You can now exclude removable media such as USB sticks and external drives from virtualization. Doing so allows apps in the Virtual Desktop to write and make changes to specific media attached to the endpoint. This provides another way to export data from the Virtual Desktop in addition to Shared Space.

You can configure these exceptions in the ‘Containment’ section of an Endpoint Manager profile.

Set Custom Disclaimer for Virtual Desktop

Expanding our white-label options, you can now configure a custom disclaimer message for the Virtual Desktop. Users must accept the disclaimer before starting the virtual session.

You can configure the disclaimer in the ‘Containment’ section of an Endpoint Manager profile.

See this wiki if you want help to white label/rebrand the Endpoint Manager clients.

Allow User to Override Virtual Desktop settings

When enabled, Endpoint Manager will not reverse local Virtual Desktop settings that are different to those in the endpoint’s profile. Ordinarily, Endpoint Manager checks devices to see if the local settings match those in the device profile. It will re-implement the profile settings if it detects any deviation.

The new setting gives admins greater flexibility and control over individual endpoints. For example, you can now disable the exit password on a specific endpoint, avoiding the need to create a whole new profile just to accomplish this one task.

This addition complements the existing override option in the ‘Client Access Control’ section of a profile, which allows local changes to *every* CCS setting. Admins can now allow local override of just the virtual desktop settings, while preventing changes to other CCS settings.

You can configure the override setting in the ‘Containment’ section of an Endpoint Manager profile.

Here is the wiki of this feature.

Show only Virtual Desktop settings on endpoint

New option to only show virtual desktop options when users click the CCS tray icon on an endpoint. End-users can then access and launch the virtual desktop, but cannot change other CCS settings.

This feature is useful when used with the override option described above.

You can configure this setting in the ‘UI Settings’ section of an Endpoint Manager profile.

Here is the wiki of this feature.

Improvements

Auto-updates disabled by default in CCS

Automatic updates to the CCS client are now disabled by default in predefined profiles. This change was made after valued feedback from our customers who manage complex, sometimes delicately balanced networks. To avoid potential disruptions, customers prefer to be notified when updates are available so they can review them before installation.

New default actions for unknown autorun entries

This setting determines what CCS should do if an application tries to create/modifiy a service, auto-start entry, or scheduled task. You can find it at ‘Configuration Templates’ > ‘Profiles’ > open a level 2 or 3 profile > Click the ‘Miscellaneous’ tab.

The previous default was ‘Ignore’. The new defaults are:

  •         Security Level 2 profiles –  ‘Terminate and Disable’
  •         Security Level 3 profiles –  ‘Quarantine and Disable’

You can find background information on this setting at https://help.comodo.com/topic-399-1-904-11900-miscellaneous-settings.html#action_on_tasks

Remote Control

New Features

File Transfer: Folder Transfers

You can now send/receive folders via file transfer in the Remote Control application.

You can track folder transfer status in the file transfer queue pane.

Here is the wiki of this feature.

Role-based access control for Remote Control file transfer

You can now limit file transfer capabilities for specific devices and/or device groups.

Similarly, you can now limit file transfer capabilities by role.

Here is the wiki of this feature.

Bug Fixes

  • Fixed the issue of connecting to MacOS with Remote Control.

Comodo Client Security 

Windows

New Features

‘Virtual Desktop only’ mode

As mentioned in the Endpoint Manager section earlier, we have added the ability to show only virtual desktop options when users click the CCS tray icon on an endpoint.

When enabled in a profile, CCS will only show these two items when you click the tray icon:

  •       Run Virtual Desktop – Opens the Virtual Desktop
  •       Open Virtual Desktop Settings – Opens the Virtual Desktop settings area in CCS

End-users cannot access any other area of CCS.

Improved password policy for the Virtual Desktop

Admins can prevent end-users from accessing the local computer by setting an ‘exit’ password on the Virtual Desktop. Once set, users will need to enter the password if they want to switch from the virtual environment to the local environment. We added the following settings to improve the security of this password:

  •       90-day validity period. The exit password will expire, and must be changed, after 90 days.
  •       Password complexity requirements. Passwords must now be 8-16 characters and contain a mix of upper case letters, lower case letters, numbers, and special characters.

Detection of msi installation through URL

Added a default containment rule that prevents the installation of msi packages via a URL in a command line. This feature is tightly coupled with Script Analysis as it will be detected in the list of enabled interpreters.

Virtualization exclusions for removable media.

Under default conditions, apps in the virtual desktop write to a virtual file system, and cannot save changes to the host or any peripherals. As covered earlier, you can now create exceptions to this rule for specific removable media. Creating such an exception allows users to more easily export data from the virtual desktop to USB sticks, external storage drives, or CD/DVD.

Extended Virtual Desktop Logs

Virtual desktop logs have been moved out of the ‘Containment Logs’ section and now have their own section. This improves log visibility and makes it easier to conduct investigations, analysis and forensics.

Bug Fixes

  • Fixed the issue of aborted AV Full Scans
  • Fixed the issue of adding timeout value in the duration of Virtual Desktop session
  • Fixed the issue of internal process crashes on Windows 10 Pro, Server 2016 and Server 2012 R2
  • Fixed the issue of twitching CCS icon
  • Fixed the issue of incompatibility between the security agent and Google Chrome Enterprise
  • Fixed the issue of mapping drives under incorrect directories
  • Fixed the issue of failed Antivirus signature database updates

MacOS

New Features

Disable real time scans on network items

Real time virus scans are now optional for items on shared network drives. This can improve performance by eliminating needless scans on write-restricted files. If an endpoint does not have the rights to delete/quarantine files in a shared folder anyway, then there is little reason to scan them at this point. Any files copied to the endpoint will, of course, still be scanned locally.

Here is the wiki of this feature.

Linux

New Features

External Device Control logs

We added event logs for the USB control rule. The rule allows admins to block the use of USB devices on Linux endpoints. The new logs let you analyze events where there was an attempted breach of the rule.

Here is the wiki of this feature.

Bug Fixes

  • Fixed the issue of requesting password on scan initiation attempt

Remote Monitoring and Management

Bug Fixes

  • Fixed the issue of RMM service crashing.
  • Fixed the issue of Disk Space Monitoring’s false alerts.
  • Fixed the issue of incorrect output in monitoring results.

Patch Management

Bug Fixes

  • Fixed the issue of not showing Russian characters in the Global Software Inventory.
  • Fixed the issue of Software Inventory loading failure.
  • Fixed the issue of available but not displayed 3rd party patches problem.

Service Desk

New Features

With July release Audit Data Logs will include the action time.

Portal

New Features

Comodo Dragon platform

As you may remember we introduced Itarian platform in October release. In that release, all functionality was the same for both the ITarian and Comodo ONE platforms. The only difference was the platform skin (either ITarian or Comodo ONE branded).

However, the ultimate goal was reaching to a point that we have two perfect platform. The first one, ITarian Platform, would mainly bring IT Management aspects into the forefront which is strengthened with security products. With the second platform we aim to create ALL-IN-ONE CLOUD-NATIVE CYBERSECURITY PLATFORM that brings security aspects into the forefront which is strengthened by IT Management features. You will find MDR, EDR, Network Security products and much more that are directly integrated in this platform. With this new platform you now become MSSP!!! Yes, you can offer full MSSP capabilities with your own whitelabelled SOC! Just enable COMODO Dragon Platform and start offering MSSP services, no expertise, no staff, no costly SIEM licenses! It is literally MSSP in a box!!!

Now it is time to do this. By introducing Comodo Dragon Platform we aim to create ALL-IN-ONE CLOUD-NATIVE CYBERSECURITY PLATFORM that provides Active Breach Protection in a single platform. Enable this and become an MSSP!!!

This release will be the first step toward this goal. Comodo One will turn into Dragon Platform step by step. We will first start with rebranding and continue with powerful dashboards, with built-in security products and much more.

Nothing will change from Itarian side. Itarian will continue to be your centralized IT management platform with much more powerful features.

APPENDIX-1

New Client Versions:

  • Windows Communication Client  6.29.27210.19070
  • Windows Client – Security 11.4.0.7615
  • Windows Remote Control 6.29.27171.19070
  • macOS Communication Client 6.29.27177.19070
  • macOS Client – Security 2.4.4.844
  • macOS Remote Control 6.29.27180.19070
  • Android Mobile Device Management Client 6.13.8.2