What’s New Halcyon? Linux Detections and DXP Enhancements

Written by

Published on

Nov 1, 2024

Halcyon is excited to announce new improvements to the Anti-Ransomware Platform, continuing our commitment to helping our customers avoid business disruption caused by a successful ransomware attack.

This release includes several important capabilities that improve our detection capabilities on Linux systems as well as a new way to detect attackers attempting to steal your data. For complete details, review the release notes.

Linux Detection Improvements: Halcyon Linux Agent fully supports the Bad File Extension feature. When an untrusted process attempts to create or rename a file with an untrusted extension, an event is sent to the cloud, triggering a unique alert for each combination of file artifact SHA256 and untrusted extension.

Data Exfiltration – Volumetric Detection: Halcyon DXP can now send volume threshold limits to the cloud. This new capability enables the upcoming release of Nefarious Data Volume alerts in an upcoming user interface release.

Improved Logging Infrastructure: We are continuing to improve our ability to log events to syslog on Linux and Event Viewer on Microsoft Windows systems in future Halcyon Agent updates

In addition to these updates, here are several interesting updates to the web console:

The Overrides page now has a Host tab -- this is the future home for DXP alert overrides.

Users with the PowerUser role can now access and modify the list of users within a tenant.

There is now text in the Overrides explaining the nature and impact of each override.

Halcyon.ai eliminates the business impact of ransomware, drastically reduces downtime, prevents data exfiltration, and enables organizations to quickly and easily recover from attacks without paying ransoms or relying on backups – talk to a Halcyon expert today to find out more. Halcyon also publishes a quarterly RaaS (Ransomware as a Service) and extortion group reference guide, Power Rankings: Ransomware Malicious Quartile, and check out the Recent Ransomware Attacks resource site.

See All Blog Posts

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Related Posts

Last Week in Ransomware: 11.18.2024

Last Week in Ransomware: 11.11.2024

Halcyon Threat Insights 010: November 2024 Ransomware Report

Last Week in Ransomware: 11.04.2024

See Halcyon in action