Monthly Release Notes - November 2025

Jump to:

Agari Alert Logic Automate Beyond Security
Boldon James Bytware CCSS Clearswift
Cobalt Strike Core Security Digital Guardian Document Management
FileCatalyst Fortra Fortra Application Hub Globalscape
GoAnywhere Halcyon IBM Partnership Insite
InterMapper Outflank Security Tooling Powertech Robot
Safestone Sequel Showcase Tango/04
TeamQuest Terranova Security Titus Tripwire
Vera

 

Agari

Version 2025.11

November 2025

Updates
  • Updates to the Search Messages page:

    • Date range filters now include hour and minute time ranges (based on a user's current time zone).

    • The drilldown from the messages chart has been expanded from 1 hour to 1 minute intervals.

    • Drilldown selections are now presented as breadcrumbs which can be individually cleared.

    • The results table has been updated allowing for more results to be presented in a standard window.

    • The results table now has a setting for "dense" row spacing to further conserve screen space.

Fixes

  • Fix for policy creation not setting the policy action correctly.

  • Fix for policy digest threshold slider not displaying the right value.

Back to Top

 

Boldon James

SAFEmail

Version 3.9.5

November 14, 2025

  • There are no software updates. This version is released with the general SAFEmail release.

IMPORTANT: Microsoft ended support for Windows 10, Office 2016 and Office 2019 in October 2025. Our policy is not to support Microsoft products that are out of extended support.

SAFEmail GreenShield Expansion Pack

Version 3.9.5

November 14, 2025

  • There are no software updates. This version is released with the general SAFEmail release.

IMPORTANT: Microsoft ended support for Windows 10, Office 2016 and Office 2019 in October 2025. Our policy is not to support Microsoft products that are out of extended support.

SAFEmail P7 Transport

Version 3.9.5

November 14, 2025

Fixes

  • When a 'Reply All' is performed to a P772 message that as a result of redirection has the Alternate Recipient field set for one of the recipients, the Alternate Recipient is also set for that recipient on the newly sent message.

IMPORTANT: Microsoft ended support for Windows 10, Office 2016 and Office 2019 in October 2025. Our policy is not to support Microsoft products that are out of extended support.

SAFEmail Security

Version 3.9.5

November 14, 2025

  • There are no software updates. This version is released with the general SAFEmail release.

IMPORTANT: Microsoft ended support for Windows 10, Office 2016 and Office 2019 in October 2025. Our policy is not to support Microsoft products that are out of extended support.

Back to Top

 

Cobalt Strike

Version: 4.12

November 24, 2025

New Features

  • Added drip-loader support.

    • Added drip-loading in Beacon for memory allocation/process inject.

    • Added drip-loading in the reflective loader.

    • Changed ALLOCATED_MEMORY_* structures (USER_DATA.version 4.12 requires updated structures - breaking change for sleepmask).

  • Added UDC2 beacons for User Defined Command and Control (UDC2).

  • Added task IDs to associate task/command input and retrieved output in logs.

  • Added REST API server [BETA]

    • Introduced a new REST API server, designed to run alongside the team server and provide access to Cobalt Strike functionality via REST.

    • Enhanced the team server to add task tracking to support task/response relationships through the REST API.

    • Enabled centralized artifact management through the REST API.

  • Added "beacon_info" command to list beacon memory information.

Enhancements

  • Added new UAC bypasses.

  • Added SOCKS5 IPv6 support which is limited to TCP.

  • Added results from File Browser list files (ls) and Process Browser list processes (ps) to Beacon logs.

  • BOF Improvements

    • Added an API for BeaconDownload.

    • Updated to use Dynamic Import which removes the limits on the number of Beacon Object File Imports.

  • GUI Overhaul

    • Switched look and feel from Synthetica to FlatLNF.

    • Added new look and feel themes.

    • Replaced various product icons.

    • Replaced "colorPanel" aggressor function with "colorMenu".

    • Updated beacon session list external column link/unlink text symbol to an icon.

    • Updated the File Browser tree to wait until previous click completes loading before accepting another click (double-loading).

    • Added labels to pivot graph links.

  • Process Injection Overhaul

    • Added injection techniques in the client.

    • Added PROCESS_INJECT_EXPLICIT_USER and PROCESS_INJECT_SPAWN_USER aggressor hooks for adding user-defined injections to the UI.

  • Removed support for StompLoader.

  • Updated pivot beacons (SMB and TCP) to use overlapped IO for named pipes/sockets (breaking change with previous versions).

    • Updated and simplified the sleepmask entry point.

  • Updated beacon cleanup and exit procedures.

  • Updated Java dependencies from Java 11 to Java 17.

Fixes

  • Fixed help for "beacon_config".

  • Fixed issue preventing BEACON_RDLL_GENERATE_LOCAL hook from firing.

  • Fixed issue with tasks larger than Task Max Size to crash beacon.

  • Updated SSH beacon to work on newer Linux distros.

Back to Top

 

Digital Guardian

Agent for Windows

Version: 9.4.1

November, 2025

New Features and Enhancements

  • There are no new updates and enhancements in this release.

Fixes

  • Resolved an issue in the DG Scanner where frequent status messages introduced in Windows Agent 8.0 caused a high volume of communication with the DGMC server, leading to increased server load on server and potential performance issues. This has been fixed in Windows Agent 9.2.1, where scanner status messages are now sent according to the Agent Query Interval configuration (default: 30 minutes).

    NOTE: If you are using the DG Scanner, it is strongly recommended that you upgrade to this release to avoid potential performance issues. This fix will also be included in Windows Agent versions 9.4.1, 10.1, and later.
Version: 10.1.0

November, 2025

New Features

  • This release introduces two new domain flags that provide control over the TLS version used during a handshake. These flags can be configured to resolve access issues with servers that fail cipher negotiation. For more information, refer to Domain Flags File Changes section in Digital Guardian Agent for Windows Release Notes v10.1.0.

  • This release includes improvements to process flags. Duplicate entries have been removed, and process entries have been corrected to ensure company names use proper formatting. For more information, refer to Process Flag Changes section in Digital Guardian Agent for Windows Release Notes v10.1.0.

Fixes

  • Resolved an issue in the DG Scanner where frequent status messages introduced in Windows Agent 8.0 caused a high volume of communication with the DGMC server, leading to increased server load on server and potential performance issues. This has been fixed in Windows Agent 9.2.1, where scanner status messages are now sent according to the Agent Query Interval configuration (default: 30 minutes).

    NOTE: If you are using the DG Scanner, it is strongly recommended that you upgrade to this release to avoid potential performance issues. This fix will also be included in Windows Agent versions 9.4.1, 10.1, and later.

  • Resolved an issue where the Company Name attribute in process flag files was required to use the ASCII code , for commas to comply with the DG Management Console User's Guide best practices.

  • Resolved an issue where the rule to block deletion with file size rule property did not function correctly.

  • Resolved an issue where the rule to block Fast I/O file read operation from the network shares was not functioning as expected.

  • Resolved an issue where copy-paste blocking did not consistently apply on ChatGPT 3.5 sites in Microsoft Edge and Google Chrome. The system now consistently blocks copy and paste actions in the address bar, chat box, and when inserting symbols or emojis, ensuring that all operations are blocked as expected.

  • Resolved an issue by extending DOS device path support in Fast Path Filtering. File paths such as \\.\C:\Test\Foo.txt and \\?\C:\Test\Foo.txt are now supported in processing, ensuring that file create requests from applications like Firefox are handled properly.

  • Resolved an issue by enabling a post-processing validation step in the Content Inspection workflow, reducing false positives in returned content pattern matches.

  • Resolved an issue where the web server using outdated cipher suite during TLS handshake. The issue was resolved by configuring appropriate domain flags that enforces a specific TLS version. For more information, refer to Domain Flags File Changes section in Digital Guardian Agent for Windows Release Notes v10.1.0.

  • Resolved an issue causing a memory leak in Excel when multiple add-ins are used.

  • Resolved an issue where the initial uninstall key was not saved during command line installation, preventing the agent from being uninstalled before it registered with the DGMC server.

  • Resolved an issue by introducing a new configuration option, enableClipboardRefresh, to provide greater flexibility. This allows administrators to disable clipboard refresh to prevent format degradation while maintaining security controls. By default, clipboard refresh remains enabled to support Microsoft Information Protection (MIP) in Microsoft Word desktop, so no action is required unless you wish to disable it. To disable clipboard refresh, add the following to your configuration:

    <enableClipboardRefresh>0</enableClipboardRefresh>

    IMPORTANT: If you are using MIP in Microsoft Word desktop, do not disable this feature. If disabling it is necessary, please contact the Fortra Support team for guidance.

  • Resolved an issue where the agent could not reinstall after a silent uninstall failed to remove all of its artifacts.

Back to Top

 

FileCatalyst

Version 5.2.0 - Build 197

November 12, 2025

Fixes

  • Upgraded Bootstrap to 4.4.1.

  • Fixed memory leak, introduced in v5.2.0 build 13.

  • Fixed warn the admin that a server is down when doing a check site.

Back to Top

 

Fortra

Fortra platform

November 21, 2025
Fixes

  • Fixed scrolling issues in Platform Manager.

  • Standardized table and row interactions across Platform Manager.

  • Standardized button text across Platform Manager.

  • Resolved security vulnerabilities and minor bug fixes.

November 6, 2025
Fixes

  • Improved consistency of information messages in UI.

  • Resolved security vulnerabilities and minor bug fixes.

November 3, 2025
Enhancements

  • Emails can now be sent with a customized From address.

Fixes

  • Added validation message for unsupported image files.

  • If there are no changes made in a drawer, the save option now correctly performs the same action as the cancel option.

  • Resolved security vulnerabilities and minor bug fixes.

Back to Top

 

Fortra Application Hub

Version 1.4.1

November 19, 2025

Fixes

  • Resolved authentication issues when logging into Powertech Antivirus server.

Back to Top

 

GoAnywhere

GoAnywhere MFT

Version: 7.9.1

November 24, 2025

Enhancements
  • Enhanced Mina SSH/SCP/SFTP Resource to support diffie-hellman-group-exchange-sha1, diffie-hellman-group14-sha1, diffie-hellman-group1-sha1 Key Exchange algorithms.
  • Improved Job/Job File Audit sequence management during shutdown, the reset now occurs only if the current sequence value aligns with the expected value.
Fixes
  • Fixed a NullPointerException when executing scheduled jobs with an LDAP user configured as the Admin User on the Schedule.

  • Fixed an issue in SSH Upload Tasks using a fileset could fail if the newly uploaded file path is not available.

  • Fixed an issue when accepting a shared file/folder and a failure occurred emailing the sharer, the web users would need to logout and login to view the share.

  • Fixed an issue where IP Exemption/IP Filter range duplicate deletions would delete the entire range.

  • Fixed an issue where LDAP managed login methods were incorrectly using group membership instead of user membership.

  • Fixed an issue where Virtual Folders tied to SSH Resources using the new MINA client would cause NPE when listing folders.

  • Fixed an issue with listing Network Share Virtual Folders via the SFTP service.

  • Fixed an issue with shared folders preventing the user from uploading and downloading.

  • Fixed default algorithm order when using Mina for SSH/SCP/SFTP Resources.

  • Fixed issue where some GoFast transfers would fail to initialize.

  • Fixed the issue where WebDAV resources would throw NullPointerExceptions when used with the FCService.

Version: 7.9.0

November 12,, 2025

New Features
  • Added support for FIPS 140-3
  • Added "FileCatalyst" service option to report tasks within MFT Workflows.
  • Added an API action for removing SSL certificates and keys from KMS keystores.
  • Added FileCatalyst option to report UI in Workflows.
  • Added Old Dashboard Redirect URL.
  • Added the ability to import ED25519 PKCS8 and OpenSSH SSH Keys.
  • Added the ability to create ED25519 PKCS8 SSH Keys.

  • Added Mina as a new SSH client provider.

  • Added support for ED25519 key authentication within the Mina SSH client.

  • Added support for the following new algorithms within the Mina SSH client:

    Host Key Algorithms

    • chacha20-poly1305@openssh.com

    Cipher Algorithms

    • ssh-dss-cert-v01@openssh.com

    • ssh-ed25519

    • ssh-ed25519-cert-v01@openssh.com

    • ssh-rsa-cert-v01@openssh.com

    • rsa-sha2-256-cert-v01@openssh.com

    • rsa-sha2-512-cert-v01@openssh.com

    • ecdsa-sha2-nistp256-cert-v01@openssh.com

    • ecdsa-sha2-nistp384-cert-v01@openssh.com

    • ecdsa-sha2-nistp521-cert-v01@openssh.com

    • sk-ecdsa-sha2-nistp256@openssh.com

    • sk-ssh-ed25519@openssh.com

    Key Exchange Algorithms

    • curve448-sha512

    • diffie-hellman-group15-sha512

    • diffie-hellman-group17-sha512

    MAC Algorithms

    • hmac-sha1-etm@openssh.com

  • Added the ability to set the log level to TRACE log without needing to restart the application.
  • Added thread name to the system log when in DEBUG/TRACE log level.

  • Implemented Failover Connection pooling for LDAP Managed Login Methods.

  • Improved the LDAP Managed Login Method Test to be localized as well as attempt both primary and alternate servers.

Enhancements
  • Added auto-archiving options to the FileCatalyst task.
  • Added FIPS compliance mode for the FileCatalyst service to ensure algorithms negotiated between client and server fall within FIPS 140-3 guidelines.
  • Added in connection mode settings for FileCatalyst task.
  • Added new Project Templates.
  • Added support for container-level SAS authentication in Azure Storage.
  • Added support for SHA256 and SHA512 SSH key digests when using the Host Key field for key fingerprint validation with SSH resources and tasks when using the new Mina SSH client.
  • Added the ability to configure ED25519 private key in SFTP Service.
  • Added the ability to configure target rate settings for the FileCatalyst Task.
  • Converted the Support Bundle Zipping process to reduce the size of the zip files.
  • Enhanced the job log indexing to include the first 8 lines of all job logs regardless of the file size.
  • Enhanced Web User File system so that permission changes or revocation of a Shared Secure Folders/Files now apply immediately to all active user sessions.
  • Hid unsupported algorithms when running in FIPS mode across the following areas: AS4 resource, SFTP resource/server, Web User AS4 tab (push/pull processing), PGP Sign/Encrypt and Send Email tasks, and certificate creation for both KMS and file-based keys pages.

  • Improved the user experience when creating invalid certificates within Key Management System(KMS) when in FIPS Approved Mode.

  • Now there is a possibility to turn on/off the syslog async logging and local async logging.

Updates

  • Updated commons-lang3 from version 3.14.0 to 3.18.0.

  • Updated esapi from 2.6.0.0 to 2.7.0.0.

  • Updated log4j from 2.17.1 to 2.24.3.

  • Updated slf4j-api from 1.7.32 to 2.0.16.

  • Updated netty from version 4.1.118.Final to 4.1.125.Final.

  • Updated nimbus-jose-jwt library from version 9.37.3 to 9.48.

  • Updated poi-ooxml from 4.4.1 to 5.4.0.

  • Updated Tomcat from version 9.0.107 to 9.0.111.

  • Updated Unbound ID (SDK) from 4.0.14 to 7.0.2.

  • Updated bc-fips to 2.1.0
  • Updated bctls-fips to 2.1.20
  • Updated bcpg-fips to 2.1.11
  • Updated bcmail-fips to 2.1.6
  • Updated MFT SaaS WebDocs signing to use RSA-SHA256 instead of RSA-SHA1 to ensure FIPS 140-3 compliance.
Fixes
  • Enhanced the FTP/FTPS/SFTP Resource File Syntax implementation to cache and reuse the resource.
  • Fixed an issue parsing license responses with forged signatures.
  • Fixed an issue where a value of "null" would be present in reports when a field didn't contain data.
  • Fixed an issue where Admin and Web Users could inadvertently be disabled during LDAP login routing.
  • Fixed an issue where AS3 message creation could fail due to missing transfer information during processing.
  • Fixed an issue where resumed transfers in FCService would display as the wrong direction.
  • Fixed an issue where resumptions were not working with FCService uploads.
  • Fixed an issue where SFTP Web Users configured for one authentication type could still authenticate with a different method when using an alias.
  • Fixed an issue where the Cloud Connector Resource can become cleared out intermittently.
  • Fixed an issue where the Put action in the FTP, FTPS, and SFTP Tasks did not set the file size and modified timestamps for each file in the Destination Files list.
  • Fixed an issue where third-party PeSIT clients could receive erroneous timeout errors when targeting a File Template configured for compression.
  • Fixed an issue with opened streams hanging cancel project execution having Copy task.
  • Fixed an issue with SSH host key algorithms which were not properly being filtered while in FIPS mode.
  • Fixed an issues with SSH re-keying occurring in the wrong order.
  • Fixed incorrect ICAP header lengths when special characters weren’t counted as multi-byte, by computing. byte-accurate Encapsulated offsets per RFC 3507.
  • Fixed issue where bad local addresses were not bubbling up to MFT UI.
  • Fixed an issue where the Active Sessions page would not properly clear out already cancelled sessions.
  • Fixed an issue where cancelling an already terminated session would throw a NullPointerException.
  • Fixed issue where FCService was incorrectly allocating ports on Gateway.
  • Fixed issue where FileCatalyst Service transfers were releasing audit events too early.
  • Fixed issue where FileCatalyst Service would not execute Account Disabled triggers.
  • Fixed issue where the FileCatalyst task would fail when FIPS compliance was enabled on the system.
  • Fixed SLA gadget color.
  • Reduced the memory footprint when listing files within the SFTP server.

GoAnywhere Agents

Version 2.5.1

November 24, 2025

Enhancements

  • Enhanced Mina SSH/SCP/SFTP Resource to support diffie-hellman-group-exchange-sha1, diffie-hellman-group14-sha1, diffie-hellman-group1-sha1 Key Exchange algorithms.

Fixes

  • Fixed default algorithm order when using Mina for SSH/SCP/SFTP Resources.

  • Fixed issue where some GoFast transfers would fail to initialize.

Version 2.5.0

November 12,, 2025

New Features
  • Added support to use ED25519 SSH Keys for Authentication.
  • Added the ability to switch SSH clients that support ED25519 Keys.
Enhancements
  • Added in connection mode settings for FileCatalyst task in Agents.
  • Added the ability to configure target rate settings for the FileCatalyst Task.

  • Added in connection mode settings for FileCatalyst task in Agents.

  • Added the ability to configure target rate settings for the FileCatalyst Task.

  • Replaced the old jaxb-core and jaxb-impl libraries with the newer jaxb-runtime version 2.3.3.

Updates

  • Updated netty from version 4.1.118.Final to 4.1.125.Final.

  • Updated poi-ooxml from 4.4.1 to 5.4.0

  • Upgraded JAXB from jaxb-api 2.2.12-b140109.1041 to jakarta.xml.bind-api 2.3.3.

Fixes

  • Fixed an issue with opened streams hanging cancel project execution having Copy task.

  • Fixed an issue where FC resource tests in agents would fail if FIPS compliance was enabled.

GoAnywhere Gateway

Version 3.4.0

November 24, 2025

Enhancements
  • Updated netty from version 4.1.118.Final to 4.1.125.Final.
  • Upgraded JAXB from jaxb-api 2.2.12-b140109.1041 to jakarta.xml.bind-api 2.3.3.
  • Replaced the old jaxb-core and jaxb-impl libraries with the newer jaxb-runtime, version 2.3.3.

GoAnywhere Outlook Web Add-in

Version: 1.0.0

November 19,, 2025

Initial Release

Created a new web add-in for Microsoft Outlook for the Web® to send Secure Mail. The add-in can be used with GoAnywhere 7.8.1 and higher. The following features are available in the add-in:

  • Messages can be sent using Secure Mail when the regular Send button in Outlook is clicked.
  • Added the ability to personilize Attachments, Packages and Request Files settings within the ranges set in the GoAnywhere Secure Mail settings.
  • Added the ability to request files from recipients. This option will send a unique link to recipients requiring files to be uploaded and returned to the requester.
  • Added the ability for users to use GoAnywhere Mail Templates from Outlook add-in.
  • Added multilingual support in the Outlook add-in. The add-in supports English, Spanish, German, French, Japanese, Chinese, Danish, Dutch, Hungarian, Italian, Indonesian and Portuguese.

Back to Top

 

Powertech

BoKS Control Center

Version 9.0.0.1

November 13, 2025

New features

  • Added user section listing all SSH Public Keys owned by the user.

Fixes

  • Domain password policy's password parameters couldn't be edited when ABAC was enabled.

  • Client certificate login properties added to bcc.properties file.

  • Access rule set link in user access rule list did not function correctly.

  • Keep add program member popup open.

  • Added Kerberos password support for LOGIN and XDM methods.

  • Show secondary unix groups section even if unix group management is disabled.

  • User security settings "time dependent timeout" naming.

  • Logs now generated when BCC server is shutting down.

  • Removed deprecated http header X-XSS-Protection.

  • Added Reset failed logins link for principal.

  • Certificate Created field in host certificate details was not correct.

Version 8.1.0.5

November 13, 2025

Fixes

  • Domain password policy's password parameters couldn't be edited when ABAC was enabled.

  • Html pages should specify charset utf-8.

  • Added support for access method SUDOLISTOTHERS.

  • Added support for new access rule modifier use_targetpsw.

  • Added support for * as program in Program Group for sudo.

  • Add program member popup should be kept open.

  • Added kerberos password support for LOGIN and XDM methods.

  • Removed deprecated http header X-XSS-Protection.

  • Certificate Created field in host certificate details was not correct.

BoKS Web Services Interface

Version 9.0.0.1

November 13, 2025

New features

  • Added support for BoKS Keytab management.

  • Added parameter createDirectoryHost to the modifyBoksUser function.

  • Added possibility for garbage collection debug logging.

Updates

  • Default Java heap size is increased from 2G to 4G.

  • Generic error message generated for JSON parse errors.

Fixes

  • Added error handling and logging for UNKNOWN_ERROR in BCCAS communication.

  • Removed deprecated http header X-XSS-Protection.

Version 8.1.0.5

November 13, 2025

New features

  • Added possibility for garbage collection debug logging.

Updates

  • Default Java heap size is increased from 2G to 4G.

  • Generic error message generated for JSON parse errors.

Fixes

  • Added error handling and logging for UNKNOWN_ERROR in BCCAS communication.

  • Removed deprecated http header X-XSS-Protection.

BoKS Manager

Version 8.1 (version update)

November 05, 2025

Client c-8.1.0.26
Fixes

  • Fixed an issue where nodekey auto-update was running too frequently on IBM AIX systems.

Updates

  • Added support for Amazon Linux 2023 using the Red Hat EL 9 x64 package. This requires that you also install the amazonlinux 2023 boks-selinux 1.19 or later package, available from the Downloads area of the Fortra Support Portal.

  • Upgraded OpenSSL library to 3.5.4.

  • Removed BoKS auto-registration support for SSLv3 protocol.

NOTE:

If you downgrade the package to a previous version, BoKS is not started automatically, but must be manually started using the Boot command.

Version 8.1 (version update)

November 05, 2025

Server s-8.1.0.19
Updates

  • Upgraded OpenSSL library to 3.5.4.

  • Removed BoKS auto-registration support for SSLv3 protocol.

NOTE:

If you downgrade the package to a previous version, BoKS is not started automatically, but must be manually started using the Boot command.

Antivirus Endpoint

Version 6.4.0

November 10, 2025

IMPORTANT: Support for the following operating system/platform combinations is provided on a best-effort basis:

• Ubuntu Server 20 for s390x.

• SUSE Linux Enterprise Server 12 for s390x.


Support for the following operating system/platform combinations will be removed in a future version:

• Red Hat Enterprise Linux 7 big-endian for Power Systems servers.


Customers who are using those operating systems should plan to migrate to newer operating system versions.

• Ubuntu Linux 16 for x86_64 is no longer supported.

New Features

  • On-demand scanning now has the capability to exclude endpoint paths by filesystem type.

Enhancements

  • This release includes the Trellix 6800 anti-malware engine. This offers new support for the VHD file type, repair enhancements for Excel spreadsheets, quality improvements, and malware threat enhancements.

  • The default on-access include path configuration for new installations is now the home directory area.

  • IPC socket and lock files are now located under /var/run or /run rather than /tmp, to help avoid accidental removal.

NOTE: because of this change, it is recommended that a product upgrade should only be performed while on-demand scans are not in progress.

  • The help text for the endpoint registration script register.sh has been improved.

Fixes

  • The handling of signals in the avinsite service has been improved to avoid errors when updating the Powertech Antivirus Server during the endpoint actions for health checks, applying configuration, DAT file updates, license management, and control of the on-access service.

  • Linux services have been modified to avoid warnings from systemd about the PID file location.

  • Linux service definitions have been modified to avoid warnings about the PID file access from systemd.

  • Linux service control scripts have been modified to ensure systemd is informed after installation of service definition files.

  • Quarantine management and monitoring has been fixed for cases where /Quarantined is a link.

  • The avinsite program is now prevented from overwriting its IPC socket file when another instance of the service is already running.

  • Error handling has been improved to avoid fanotify error conditions that could cause loss of monitoring on Linux.

  • Installation documentation now includes instructions for handling a known issue with the rpm command on AIX 7.2 that caused installations and upgrades to fail.

Antivirus Server

Version 6.5

November 13, 2025

New Features

  • The Endpoint Registration page now displays additional registration details and a sample registration command that can be easily copied.

  • Support of "Exclude Filesystem Type Names" option has been added to On-Demand scan configurations for Linux/Unix systems.

Enhancements

  • Detailed logging has been added to the installation scripts.

  • The Installer has been enhanced to install all required system packages and Perl modules without the need for any user intervention.

  • A new optional flag '--skipprerequisites' can be passed to the installer to skip the installation of required Perl modules and system packages.

  • The Hostname selection process used during the install routine has been improved to display more useful information.

  • The Java runtime environment has been upgraded to 17.0.16.

  • PostgreSQL has been upgraded to 17.6.

  • Apache Tomcat has been upgraded to 10.1.46.

  • The Flyway database migration tool has been upgraded to 11.8.2.

  • Kafka has been upgraded to 3.9.1.

  • Other various library upgrades have been made to address vulnerabilities.

Fixes

  • Fixed the issue of a hostname being ignored during the silent install.

  • Fixed the message text generated when registrationKey.txt file is not found during the installation.

  • Fixed the incorrect value for number of CPU cores reported during the install.

  • Fixed the issue of a database upgrade having missing binutils.

  • Fixed the issue of displaying an "exit status 1" message on the Activity Details page instead of meaningful messages.

Back to Top

 

Terranova Security

Version: 1.118

November 26, 2025

Fixes

  • There was an issue where an active phishing simulation did not appear in the Active Simulations section and was missing from the simulation drop-down menu. This issue has been fixed.

  • There was an issue where the restore option for archived quizzes was not functioning as expected. This issue has been fixed.

  • There was an issue with the Google Test Email functionality in the DMI section, where Gmail test emails were not sent and an error message stating “Please contact an administrator” was displayed. This issue has been fixed.

 

Version: 1.117.1

November 19, 2025

Fixes

  • There was an issue where some users were unable to access or complete certain quizzes due to a system exception error. This issue has been fixed.

 

Back to Top

 

Titus

DCS One (SaaS)

Version 2025.10

November 19, 2025

New Features

  • If enabled in the DCS One manifest files, you can add portion marks to individual portions of an email, or document. Portion marking is configured in DCS Policy Manager.

    NOTE: Portion marking is a preview feature for DCS One.

  • Added support for a new “Information” option for the "Severity" parameter of the different alert action types in DCS Policy Manager.

DCS Policy Manager (SaaS)

Version 2015.10

November 19, 2025

New Features

  • For DCS for Windows and DCS One:

    • Added support for the Portion Marking feature, which is only available in the Ultra product edition. Only DCS for Windows will support the policy event and action for documents. Both will support App Settings for email and documents, with DCS Windows supporting a few more settings than DCS One due to technical limitations.

    • Changed the “Warn” parameter to “Severity” for the “Alert”, “Alert – attachment classification”, “Alert – recipient”, and “Set classification” actions. The “Deny” action has also been removed because you can set “Severity” to “Prevent”.

    • Added a new “Information” option for the “Severity” parameter for the “Alert”, “Alert – attachment classification”, “Alert – recipient” actions. You could use this type of alert to notify the user that they are not following best practices.

  • For DCS for Windows:

    • Added new App Settings that allows users to reset classification to the default state (under Classification Selection UI).

    • Added new App Settings for Microsoft Sensitivity Label Interoperability (under User Settings).

Enhancements

  • Enhanced Fortra Platform onboarding process to automatically integrate newly added users if their tenant is already integrated with the Fortra Platform.

TCS for Mac

Version 2023.0 SP3

November 24, 2025

Enhancements
  • Confirmed support for Tahoe (macOS 26).
Fixes
  • Fixed issue with the TCS for Mac icon appearing as a black dot on the menu bar in macOS Tahoe.
  • Fixed multiple issues with the TCS for Mac Classification add-in not appearing on the ribbon bar in Microsoft Office applications.
  • Fixed issue with cell values being duplicated when saving Microsoft Excel documents.
  • Fixed issue with the "Processing File Metadata" dialog not closing when updating classification selections.
  • Fixed issue with the TCS for Mac add-in not processing actions and displaying a "TITUS Classification Service is currently unavailable" error.

Back to Top