April 15, 2024 - Version 8810

NOTE Datto EDR leverages a staggered release process. You'll receive an in-product notification when these updates are available to your instance.

Version information

Endpoint Security Agent	Ransomware Agent	Rollback Agent	API
3.4.0	1.3.0	1.2.2	5.0.0

Service note

IMPORTANT To enhance the security of all customers, new geo-IP filtering went into effect on Monday, April 15, 2024. To learn more, refer to Geo-blocked regions.

New features

We're excited to introduce automated response policies: a new endpoint protection tool that is designed to disrupt risky behaviors, not business. Automated response policies contain pre-defined detection rules selected by our Content Engineers that can carry out recommended actions when a threat is detected on an endpoint. These policies can attempt to kill malicious processes, quarantine suspicious files, or isolate the host from the network, mitigating the scope of an attack and preventing it from spreading to other devices in your environment. In addition, you can create your own rules to ensure that your customers receive the comprehensive protection they deserve. To get started with this feature, refer to What are automated response policies? and Response policy.
We have introduced multi-volume support and folder exclusions for ransomware rollback. Rollback file tracking on additional connected drives and optional folder blocklisting give you expanded granular control over the data you'd like to protect. Configurable from your ransomware policy, this new feature delivers improved protection for endpoints that perform large numbers of read and write operations.

Enhancements

The Executive Threat Report will now enumerate the total count of monitored hosts for the organization or location in the current filter.
With this release, the Executive Threat report details alert information instead of vulnerabilities. This improvement empowers you with insights into alerting volumes and helps you identify top offending hosts.
We've added a Datto AV reporting status to the Device Details page. This indicator helps you understand if the Datto AV service is running and whether the endpoint requires a reboot.
Tooltip guidance now exists in the Datto AV Exclusions configuration modal. The tooltips provide examples of valid exclusion paths to ensure that path information is correctly entered.

Bug fixes

We've fixed an issue that could cause older database files on endpoints to grow too large. We identified the cause and added controls to limit their size.
This release updates the monitoring behavior used by the Endpoint Security agent's servers to determine if a device is online and checking in with the cloud platform. This update should address issues in which an endpoint was incorrectly marked as "inactive" due to a missed check-in event.

Artifacts

agent.linux-amd64.87bf0d83e20387b83e17c894b3e50a273dfe7ac75bbb7fc421fc100d175d6128.exe.gz
agent.linux-arm64.44e99f237da7cffa09a8f799841d0ca7bb40fb5e02f1ee4ea9ee74bf2c83b97f.exe.gz
agent.linux-x86.7540401026848022339551882311ebd47620bb0cc1f28eb6dca3009b37dd440a.exe.gz
agent.macos-amd64.8b1d79ed8a5c94229990f514c3e8b89fac7488a0ff0d2a66ee7cf8d83ecf572e.exe.gz
agent.macos-arm64.11a8853c20e4c4cd72655ad429907927f6928e03dc7113060f32c86a70b955f6.exe.gz
agent.windows-amd64.575284fcfda1db0d67333af423d02ef082facfefdf94bf8575bc9ceb0b0e3c49.exe.gz
agent.windows-x86.9aa044ddd761fc79898947a33b3b5048f9adb69592ba3b5676c7e84c601723d3.exe.gz
integrator.windows64.29a94f336fda3e39861b69ab55dbe8814667c767c0e70ac46ac25623ebb09d20.exe.gz
rwd.windows32.8f195049f91cc365db1d065aa746a74c936d171734535ee8ff5212c1b1565c59.zip
rwd.windows64.c0d2c6bad5392e6e2fda6a2c19591eedf35cb273c6db302e12ab4098f022fd42.zip

	Need troubleshooting help? Open the Kaseya Helpdesk.
	Want to talk about it? Head on over to the Community!
	Have an idea for a new feature? Want to learn about upcoming enhancements? Visit the Ideas forum!
	Provide feedback for the Documentation team.