Search
Close this search box.

iSecurity Anti-Ransomware Release News

Version 8.05 (November 2024)

Fixes

  • Fixed issues with sending emails and SIEM reports.
  • Resolved an issue where files would disappear after cutting and pasting IFS files from one drive letter to another.

Version 8.04 (July 2024)

Improvements

  • The subsystem ZRANSOM starts on IPL now, if option “11. Activate Real-Time Detection” is activated.

Version 8.03 (May 2024)

New Features

  • Auto-activation option on IPL.

Improvements

  • Exclusions are now checked before file extensions.
  • Exclusion patterns, to avoid issues with checking in other CCSIDs.

Version 8.02 (March 2024)

New Features

  • Auto-Activation of Anti-Ransomware at IPL

Improvements

  • Import/Export function when no ransomware database exists.
  • Excludes in Anti-Ransomware, to exclude directories or files from being checked.

Version 8.01 (January 2024)

New Features

  • As of Version 8, new license files are required.
  • You can set the length of time to retain logs and CHKISA files in STRAV > 81 > 9.

Improvements

  • For better performance, when a system running multiple scanners tries to use a scanner that is already occupied, it proceeds immediately to the next scanner.

Fixes

  • Empty files now are not scanned.

Version 7.75 (October 2023)

New Features

  • New ZRANSOM subsystem, enabling multithreading for faster processing of perceived attacks.
  • New option “Check Ransomware Asynchronous” (STRAR > 81 > 21), which enables the ZRANSOM subsystem.
  • Sandbox for more efficiently and thoroughly testing files that may have been attacked, with greatly reduced false positives. 
  • New option “Print Display IFS Scan Attribute” (DSPSCNA)*CSV

Improvements

  • “@” in PGM names are now “8”
  • Fewer job logs created.

Version 7.74 (July 2023)

New Features

  • iSecurity Anti-Ransomware now supports multithreaded jobs on the File Server. Non-threaded jobs (multiple jobs named QZLSFILE) use separate jobs for each of a user’s shares. In multithreaded environments, a single job (named QZLSFILET) can share activities for multiple users. By sharing the activities, users can experience the benefits of multithreading.
  • The product enables the user to decide whether or not to use multithreading.
  • A great performance improvement is achieved as Anti-Ransomware can now split its work into two parts. The bulk of its work can now take place asynchronously, outside of the exit programs. Other processing, and the user, no longer have to wait for these operations to complete.
  • Previously, Anti-Ransomware had worked entirely within exit programs, identifying attacks there. Since the operating system waited until each exit point returned its decisions, users also had to wait until each individual action was inspected.
  • The product enables the user to decide which way to work.

Version 7.70 (December 2022)

New Features

  • We added commands for AR to start in batch.

Improvements

  • We improved activation of AR, taking existing exit programs in parallel mode.
  • AV Pattern download Proxy in German Operating System version was added.
  • The IFS performance Excludes *. extension was improved.

Version 7.69 (September 2022)

Improvements

  • Antivirus signature files and Anti-Ransomware extension files are now downloaded securely via HTTPS.

Fixes

  • Display Ransomware Compromised (SMZ1 missing)
  • When GSEPWDR was missing, AV maintenance closed the jobs and did not restart.

Version 7.66 (June 2022)

New Features

  • New option: Display Ransomware Compromised (DSPRWCMP). It enables displaying files that are suspected to have been compromised.
  •  

Improvements

  • Improved maintenance of recycle bin
  • Enhanced possibility to use existing user exit program for IBM_QPWFS_FILE_SERV in parallel with Anti-Ransomware.
  • The RTVATPSTS command (Retrieve ATP (AV AR) Status) has been improved, to allow receiving of AV FYI status
  • TPFILSR close file TPLSTRWL right after the chain, to release the file when attack is on

Fixes

  • False positive reports of attacks on special picture files
  • When Client Access IFS selects an QSYS.lib/QGPL.lib object (Access Client Solutions) a log entry 6V/1 was created alerting about a Ransomware issue
  • AR now considers React Y/N. (STRAR > 3)

Version 7.18 (April 2020)

New Features

  • PC based attack simulator for known and unknown ransomware
  • Menu item to explain how to use the attack simulator
  • Menu item that explains how Anti-Ransomware detects attacks

Improvements

  • Completely new menu
  • Simplified reaction definitions
  • Anti-Ransomware is now part of the iSecurity Advanced Threat Protection (ATP) suite. The suite has been restructured to include:
  • Simplified menus and command access:
    • STRATP         Menu of Anti-Virus, Anti-Ransomware, Object Integrity Validation
    • STRAV           Menu of Anti-Virus
    • STRAR           Menu of Anti-Ransomware
    • STROBJITG    Menu of Object Integrity Validation