Release Notes: Imunify360 v.5.10
We’re pleased to announce a new version of Imunify360, version 5.10, is now available. The following features are new in the v.5.10 release:
- cPanel upload scanner
This feature allows to block malicious file uploads via cPanel File Manager as well as prevents content modification leading to malware injections.
This is what we’ve updated in version 5.10:
cPanel upload scanner experimental
Our statistics on infection vectors clearly shows that attackers quite often upload malware via the cPanel interface. We came up with a revolutionary approach that will control malicious file upload and prevent infection with the help of AI-Bolit.
Using cPanel hooks Imunify360 blocks malicious actions made in cPanel File Manager. Each time when a potential attacker uploads files Imunify360 will initiate a scan before the file will be saved to actual location. The type of operations it processes are: edits and saves. All malicious actions registered by cPanel upload scanner are available for viewing in the list of incidents.
This feature provides enhanced Imunify360 protection capabilities. The mode this feature will be released in is “Experimental”. It is controlled by the MALWARE_SCANNING.enable_scan_cpanel config option.
By default the cPanel upload scanner feature is in the disabled state in 5.10, but you can enable it in the user interface. To do so please tick “Block malicious file uploads via cPanel File Manager” in Settings → Malware.
To switch on the feature through the CLI please use the following command:
imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": true}}'
To switch off the feature through the CLI please use the following command:
imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": false}}'
Additional information
Imunify360 v.5.10 includes 26 tasks and 38 bug fixes.
Internal records
DEF-16999 |
Several improvements for UI in Imunify AV were made: the main menu of ImunifyAV extended, cleanup buttons added, upgrade notice changed |
DEF-17568 |
AI-Bolit release of new version |
DEF-16977 |
Deobfuscator enhancement |
DEF-17052 |
Fix for a problem where RapidScan option is enabled, but the result shows 0 found files in AI-Bolit |
DEF-16966 |
A hardcoded signature for Rapid Account Scan |
DEF-17066 |
Implement different messages on MDS action complete |
DEF-17111 |
Unable to detect signature samples although regex matches in AI-Bolit |
DEF-17134 |
A fix for the cleanup process |
DEF-17170 |
A fix for a signature that was detected but not cured |
DEF-17254 |
Problem with cleaning the sample in AI-Bolit |
DEF-17273 |
A change making it necessary to always rescan HEURISTIC files in RAS database |
DEF-17328 |
Check database for cleanup errors |
DEF-17330 |
Consider sqlite files safe if they correspond to certain parameters |
DEF-17364 |
Cleanup improvements |
DEF-17437 |
A fix for the cleanup of a file process |
DEF-17451 |
Remove AVD requirement from AI-Bolit specification |
DEF-17522 |
Fix for several Auditd log reader issues |
DEF-17454 |
Fix for Imunify agent failing |
DEF-17553 |
Security improvement for shared memory segments |
DEF-9641 |
ea4_main.local template on cPanel stays unmodified from now on |
DEF-17625 |
Graceful handling of arguments in cPanel upload scanner |
Stay in touch
Please give our product team feedback on this version 5.10 release. Share your ideas and feature requests through feedback@imunify360.com or via our feedback form.
If you encounter any problems with this release, please send a comment or request to our Imunify support team via cloudlinux.zendesk.com.
How to install
To install the new Imunify360 v.5.10, please follow the instructions in the documentation.
How to upgrade
If you want to upgrade to the new Imunify360 version 5.10 right now, you can use the updated script by running the following commands:
wget https://repo.imunify360.cloudlinux.com/defence360/imunify-force-update.sh -O imunify-force-update.sh
bash imunify-force-update.sh
For the regular and safe update to Imunify360 version 5.10 with a gradual rollout.
CentOS/CloudLinux systems:
yum update imunify360-firewall
Ubuntu 16.04, 18.04, and 20.04 systems:
apt-get update
apt-get install --only-upgrade imunify360-firewall
Debian 9 and 10 systems:
apt-get update
apt-get install --only-upgrade imunify360-firewall