Updated on 2023-07-13 GMT+08:00

What's New

This topic describes the features of each Host Security Service (HSS) version and the corresponding documentation updates.

March 2023

No.

Feature

Description

Phase

Related Documents

1

Honeypot file protection for Windows

Honeypot files can be deployed in protected directories and important directories (except for the excluded directories specified by users) to trap possible ransomware. If an unknown ransomware attempts to encrypt a honeypot file, HSS immediately generates an alarm.

Commercial use

Enabling Ransomware Prevention

2

The Windows policy group supports antivirus and host intrusion prevention system (HIPS) detection policies.

You can set antivirus detection policies for Windows servers to report, isolate, and kill viruses. You can also set HIPS detection policies to detect registries, files, and processes; and to report alarms for suspicious operations such as abnormal changes.

Commercial use

Policy Group

3

Trojans, viruses, and worms can trigger HID alarms.

HSS can detect, generate alarms on, and remove Trojans, viruses, and worms that intrude servers.

Commercial use

Server Alarms

4

The Docker plug-in is added to enhance container security.

To improve container security capabilities, the Docker plug-in must be installed for Docker containers (Linux).

Commercial use

Installing a Plug-in

January 2023

No.

Feature

Description

Phase

Related Documents

1

Batch agent installation

The agent can be installed on multiple servers in batches.

Commercial use

Installing Agents in Batches

2

Privileged processes can be configured in the WTP edition.

If WTP is enabled, the content in the protected directories is read-only. To allow certain processes to modify files in the directories, add them to the privileged process list.

Only the modification made by privileged processes can take effect. Modifications made by other processes will be automatically rolled back.

Commercial use

Adding a Privileged Process

June 2022

No.

Feature

Description

Phase

Document

1

Agent upgrade

You can upgrade agent 1.0 to agent 2.0. After the upgrade, you can view and manage the server protection status on HSS (New). HSS (Old) will stop detection.

Commercial use

-

December 2021

No.

Feature

Description

Phase

Document

1

Detection of remote code execution vulnerabilities

Apache Log4j2 remote code execution vulnerabilities (CVE-2021-44228 and CVE-2021-45046) can be detected.

Commercial use

-