Product Overview
OPSWAT MetaDefender Core protects organizations’ web applications, endpoints, and other data sources from advanced cybersecurity threats.
MetaDefender Core leverages proprietary technologies—including Deep Content Disarm and Reconstruction (Deep CDR), Multiscanning, File-Based Vulnerability Assessment, Data Loss Prevention, and Threat Intelligence—to provide comprehensive protection for your networks and infrastructure against increasingly sophisticated malware.
Release Highlights
Central Hub Enhancements
Introducing new settings to ensure high availability during distributed archive extraction
The new distributed extraction setting improves the processing of large archive files. It enables multiple MetaDefender Core instances to process nested files in archives.
In distributed extraction, if a MetaDefender Core instance fails, the extraction task should continue running on another operational MetaDefender Core instance.
Also, administrators can define the minimum and maximum file size for this setting.
These enhancements require Central Hub component version 1.1.1 and File Storage NAS version 1.1.1 or higher.
New configuration for file types based blocklist
This release includes a new feature enabling users to configure a blocklist for all file types except for certain ones. This exception can be set up under the "Blocklist by file type" option in the Blocklist configuration.
Comprehensive session timeout settings on UI
Users are now able to configure all session-related settings directly on the product UI.
Security enhancements
This update includes several security enhancements, including:
- Support for TLS v1.3, which strengthens security policies for HTTPS connections. By default, clients can use either TLS v1.2 or v1.3 during the handshake process.
- The upgrade uses OpenSSL 3.0.8 to address vulnerabilities.
- The update addresses risks associated with security through obscurity and information leakage.
- The improved license enforcement mechanism handles corner cases that may arise when communicating with the licensing server.
Retaining the original file name during archive extraction with special encoding is now possible
To use this feature, users can specify the correct encoding of the original file name via the engine-metadata header when submitting the file using POST /file. This will allow MetaDefender Core to work with the archive engine and retain the original file name with the designated encoding after it has been extracted. Note that this feature will only work with Archive engine version 6.2 or newer.
Supports signing in through the Identity Provider site
With the implementation of IdP-initiated SSO, users can log in to the MetaDefender Core dashboard directly from the Identity Provider (IdP) homepage. Users must navigate to the SSO user directory page on the MetaDefender Core UI to enable this feature and activate the new setting.
User Interface (UI) Improvements
- Resolved UI accessibility problems.
- Improved display for Sensitive Data Protection statistics on the Dashboard UI.It now calculates and shows the total number of sensitive result detections instead of the total number of hit objects.
- Updated labels and hyperlinks on the My OPSWAT portal in the UI.
Other Enhancements and Updates:
- MetaDefender Core now supports using proxy_pass with NGINX web server. This feature allows the URL to be redirected to another specified location.
- Users can now select the same date for filtering processing history.
- The UI for processing history now shows a label indicating "In-progress."
For more information, please visit opswat.com/products/metadefender/core or contact our critical infrastructure cybersecurity experts for assistance.
Release Details
Product: MetaDefender Core
Release Date: 28 February 2023
Release Notes: 5.4.1
Download Link on OPSWAT Portal: Download
