It's an exciting new year for cybersecurity innovation at OPSWAT. We’re kicking off 2024 with the launch of MetaDefender Core v5.9.0, which introduces two powerful new engines: Reputation and Country of Origin.
These engines bolster threat prevention and data security capabilities.
OPSWAT Reputation Engine
The OPSWAT Reputation Engine enables instant threat identification by comparing hashes against a growing database cataloging known good and known bad files.
The Reputation Engine utilizes hash reputation based on advanced analysis like metadata evaluation, content inspection, and contextual correlation to minimize false positives. This allows accurate threat detection with limited business disruption. Through database updates and hash contributions, the Reputation Engine enhances protection against new and evolving attacks.
In Metadefender Core, customers can enable the Reputation Engine through the workflow management settings.
There are three types of reputation results:
Known Good: The file hash matches a known good entry in the OPSWAT threat database, indicating it is safe.
Known Bad: The file hash matches a known bad entry, signaling it is malicious.
Unknown: No match between the file hash and the OPSWAT database entries. This could mean the file is new or there is insufficient data to determine its reputation.
OPSWAT Country of Origin Engine
The OPSWAT Country of Origin (COO) engine enables instant detection of a file's geographic source. It analyzes digital fingerprints and metadata to identify restricted locations and vendors automatically. This allows precise filtering that blocks unauthorized data access based on origin while ensuring cross-region regulatory compliance.
The COO engine supports signed file types like PE, MSI, and Self-extract. Customers can now enable it in MetaDefender Core:
The COO engine provides organizations with visibility into file upload origins. By combining advanced technologies like Deep Content Disarm and Reconstruction, Multiscanning, and Proactive Data Loss Prevention with origin-based access controls, organizations can secure intellectual property, maintain compliance, and block illegal or non-compliant foreign data. This mitigates breach risks and avoids substantial fines per regulations like GDPR.
With precise data origin insights, organizations can streamline audits, protect sensitive data, and prevent malicious file uploads. This enhances security and compliance at reduced cost.
Other Updates, UI Enhancements & Bug Fixes
- Introducing an updated UI for workflow, engine, and platform settings in OPSWAT Central Management.
- It is also important to note that in this release, MetaDefender Core will discontinue support for Windows Server 12.
With the addition of Reputation and Country of Origin engines, MetaDefender Core v5.9.0 enables proactive threat prevention and data security through multi-layered scanning and advanced analytics. Upgrading to v5.9.0 is a critical step for robust protection across upload channels.
