We have just kicked off the launch of our new MetaDefender product family! With it, comes our latest Linux version of MetaDefender Core (previously known as Metascan® for Linux). This is an exciting release for all of our current customers and partners, as it makes additional protection capabilities from the MetaDefender product line available through MetaDefender Core.
In this release:
- MetaDefender.com integration
- Inherited workflow parameters
- User agent based rule filtering
- Easier SIEM integration
Metedefender.com Integration
MetaDefender Core now allows system administrators to query scanned file hashes against MetaDefender.com's growing database for recently scanned threat information. The integration of MetaDefender Core with MetaDefender.com will allow customers to get better threat detection and reduce load on local scanning resources.
Beyond benefitting from the scan results from more than 40 anti-malware engines, customers can utilize the MetaDefender.com integration to check whether hashes have existing scan results in the cloud. If a scan result exists, a local scan can be skipped, reducing any unnecessary use of processing power. MetaDefender Core also makes it possible for customers to determine how recent a cloud scan result needs to be in order to skip the local scan.
MetaDefender.com settings within MetaDefender Core
MetaDefender Core and Cloud integration gives system administrators the threat coverage that only an advanced multi-scanning strategy can provide. The paradigm shift away from standalone antivirus solutions has been the result of an ongoing industry realization that there is no silver bullet in cybersecurity, there is no one-size fits all deployment, and there certainly are no reasons to depend on one anti-malware engine — unless your organization's data is all on paper.
Inherited Workflow Parameters
System administrators can now more easily implement comprehensive company malware scan policies across their organization through the Web Management Console. With the new feature for inherited workflow parameters, administrators can create security rules that utilize existing file processing workflows so that specifications around archive handling, blocklists, file types, and MetaDefender.com lookups are pre-filled. This means that administrators can more quickly build out and adjust their security rules in MetaDefender Core.
New User Agent-Based Rule Filtering
Multi-variate, powerful security deployments are the new bulwarks in cybersecurity, and with this evolution has come new obstacles. Having multiple security perimeters to audit various kinds of data from different types of users can complicate day-to-day business operations if policies and processes are not configured properly. MetaDefender's workflows provide a robust system for setting individualized policies, and with this latest release, they provide even more specificity by enabling exceptions for specified clients or IP addresses. Now, system administrators can design fortified data workflows, and create security rule exceptions for departments with special needs (for example, IT team members may need to receive executable files, while other teams do not).
Exception rules make MetaDefender's workflows more flexible to meet administrators' needs for customization
Easier SIEM Integration
Dynamic high-security deployments can mean large quantities of data and events to parse through, and we want integrating MetaDefender Core with a SIEM system to be easy. The new version puts all scan related information into easy-to-parse log messages that contain all scan related information: file hash, filename, threat count, names of scan engines that flagged the file, and the number of infected objects inside the scanned one.
Other Fixes and Enhancements:
- Fixed encrypted communication error with activation server on Ubuntu 12.04
- Fixed temporary folder cleanup
- Fixed support data collector scripts
- Do not download database without the corresponding engine package
- Number of engines and maximum file size now reflects the current status
- Support for system-wide HTTPS proxy
Download a trial of MetaDefender Core for Linux from our website to explore these new features, or contact us for a demo. Customers can download the latest version of MetaDefender Core v4 on the OPSWAT Portal.
