Features Introduced in Cortex XDR Agent 8.2 - Release Notes - 8.2 - Cortex XDR - Cortex XDR Agent - Advanced Endpoint Protection - Security Operations

Cortex XDR Agent Release Notes

Product
Cortex XDR
Cortex XDR Agent
Version
8.2
Creation date
2024-02-11
Last date published
2024-02-28
Category
Release Notes
Abstract

Describes the new features introduced in Cortex XDR agent 8.2 releases.

The following topics describe the new features introduced in Cortex XDR agent 8.2 releases according to the supported agent operating systems.

Features Introduced in Cortex XDR Agent 8.2.0

Linux Features

The following features were added to Cortex XDR agents running on Linux endpoints:

Feature

Description

New local analysis module

A new module now provides enhanced coverage for local analysis of the Linux file system, leveraging ML models to provide accurate and adaptive responses to evolving threats.

User Mode Agent on Linux ARM for AWS Graviton

User Mode is now supported on Linux ARM for AWS Graviton on supported Linux distributions.

Additional Linux operating systems

Support for the following Linux operating systems has been added to release 8.2 and previous agent releases:

  • RedHat Enterprise Linux 8.8, 9.2

  • Oracle Linux 8.8, 9.2

  • AlmaLinux 8.8, 9.2

  • RockyLinux 8.8, 9.2

  • Debian 10 aarch64

  • Debian 12

  • SUSE Linux Enterprise Server 15 SP5

Cortex XDR agent 8.2 can be deployed on Amazon EKS ARM, running Amazon Linux 2 nodes in ARM Architecture (aarch64).

Mac Features

The following features were added to Cortex XDR agents running on Mac endpoints:

Feature

Description

New local analysis module

A new module now provides enhanced coverage for local analysis of the macOS file system, leveraging ML models to provide accurate and adaptive responses to evolving threats.

Child Process Protection for macOS

Cortex XDR introduces an additional prevention module for MacOS that examines the relations between parent and child processes to detect suspicious relations. This module provides improved detection and protection coverage capabilities.