Describes the new features introduced in Cortex XDR agent 8.6 release.
The following section describes the new features introduced in Cortex XDR agent 8.6 release according to the supported agent operating systems. The release is divided into three deployments: September 22, 2024, October 6, 2024 and October 13, 2024.
General Enhancements
Feature | Description |
|---|---|
Disable prevention and injection | The Exception Configuration now includes the new exception type 'Disable Prevention and Injection'. In cases of a process issue, you can configure exception rules from all prevention modules and all injections. This ensures that essential processes continue to run. Cortex XDR/XSIAM still generate alerts from the exception rules. |
Windows Features
The following features were added to Cortex XDR agents running on Windows endpoints:
Feature | Description |
|---|---|
Powershell Script Files Examination | Cortex XDR agent introduces a new AI-based PowerShell local analysis module, that includes extensive detection capabilities against malicious PowerShell activities on Windows-based operating systems. |
Device Control Violations pop up management | From Cortex XDR agent version 8.6, device control violations may be displayed on the endpoint. Notifications are enabled by default and can be disabled in the User interface settings of the Cortex console. |
Operating systems | Support added for Windows 11 24H2 |