<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-5HLVVHN" height="0" width="0" style="display:none;visibility:hidden">

Release Notes: Imunify360 v.5.10

IM-major-release

We’re pleased to announce a new version of Imunify360, version 5.10, is now available. The following features are new in the v.5.10 release:

  • cPanel upload scanner

This feature allows to block malicious file uploads via cPanel File Manager as well as prevents content modification leading to malware injections.

This is what we’ve updated in version 5.10: 

cPanel upload scanner experimental

Our statistics on infection vectors clearly shows that attackers quite often upload malware via the cPanel interface. We came up with a revolutionary approach that will control malicious file upload and prevent infection with the help of AI-Bolit.

Using cPanel hooks Imunify360 blocks malicious actions made in cPanel File Manager. Each time when a potential attacker uploads files Imunify360 will initiate a scan before the file will be saved to actual location. The type of operations it processes are: edits and saves. All malicious actions registered by cPanel upload scanner are available for viewing in the list of incidents.

This feature provides enhanced Imunify360 protection capabilities. The mode this feature will be released in is “Experimental”. It is controlled by the MALWARE_SCANNING.enable_scan_cpanel config option.

By default the cPanel upload scanner feature is in the disabled state in 5.10, but you can enable it in the user interface. To do so please tick “Block malicious file uploads via cPanel File Manager” in Settings → Malware.

To switch on the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": true}}'

To switch off the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": false}}'

Additional information

Imunify360 v.5.10 includes 26 tasks and 38 bug fixes.

Internal records

DEF-16999
DEF-17000
DEF-17001

Several improvements for UI in Imunify AV were made: the main menu of ImunifyAV extended, cleanup buttons added, upgrade notice changed

DEF-17568

AI-Bolit release of new version

DEF-16977
DEF-16986
DEF-17026
DEF-17034
DEF-17053
DEF-17068
DEF-17095
DEF-17104
DEF-17113
DEF-17174
DEF-17193
DEF-17240
DEF-17248
DEF-17262
DEF-17295
DEF-17393
DEF-17285
DEF-17333
DEF-17463
DEF-17363
DEF-17365
DEF-17441

Deobfuscator enhancement

DEF-17052

Fix for a problem where RapidScan option is enabled, but the result shows 0 found files in AI-Bolit

DEF-16966

A hardcoded signature for Rapid Account Scan

DEF-17066

Implement different messages on MDS action complete

DEF-17111

Unable to detect signature samples although regex matches in AI-Bolit

DEF-17134
DEF-17511

A fix for the cleanup process

DEF-17170

A fix for a signature that was detected but not cured

DEF-17254

Problem with cleaning the sample in AI-Bolit

DEF-17273

A change making it necessary to always rescan HEURISTIC files in RAS database

DEF-17328

Check database for cleanup errors

DEF-17330

Consider sqlite files safe if they correspond to certain parameters

DEF-17364
DEF-17366

Cleanup improvements

DEF-17437

A fix for the cleanup of a file process

DEF-17451

Remove AVD requirement from AI-Bolit specification

DEF-17522

Fix for several Auditd log reader issues

DEF-17454

Fix for Imunify agent failing

DEF-17553

Security improvement for shared memory segments

DEF-9641 

ea4_main.local template on cPanel stays unmodified from now on

DEF-17625 

Graceful handling of arguments in cPanel upload scanner

Stay in touch

Please give our product team feedback on this version 5.10 release. Share your ideas and feature requests through feedback@imunify360.com or via our feedback form.

If you encounter any problems with this release, please send a comment or request to our Imunify support team via cloudlinux.zendesk.com.

How to install

To install the new Imunify360 v.5.10, please follow the instructions in the documentation.

How to upgrade

If you want to upgrade to the new Imunify360 version 5.10 right now, you can use the updated script by running the following commands:

wget https://repo.imunify360.cloudlinux.com/defence360/imunify-force-update.sh -O imunify-force-update.sh
bash imunify-force-update.sh

For the regular and safe update to Imunify360 version 5.10 with a gradual rollout.

CentOS/CloudLinux systems:

yum update imunify360-firewall

Ubuntu 16.04, 18.04, and 20.04 systems:

apt-get update
apt-get install --only-upgrade imunify360-firewall

Debian 9 and 10 systems:

apt-get update
apt-get install --only-upgrade imunify360-firewall

Release Notes: Imunify360 v.5.10

IM-major-release

We’re pleased to announce a new version of Imunify360, version 5.10, is now available. The following features are new in the v.5.10 release:

  • cPanel upload scanner

This feature allows to block malicious file uploads via cPanel File Manager as well as prevents content modification leading to malware injections.

This is what we’ve updated in version 5.10: 

cPanel upload scanner experimental

Our statistics on infection vectors clearly shows that attackers quite often upload malware via the cPanel interface. We came up with a revolutionary approach that will control malicious file upload and prevent infection with the help of AI-Bolit.

Using cPanel hooks Imunify360 blocks malicious actions made in cPanel File Manager. Each time when a potential attacker uploads files Imunify360 will initiate a scan before the file will be saved to actual location. The type of operations it processes are: edits and saves. All malicious actions registered by cPanel upload scanner are available for viewing in the list of incidents.

This feature provides enhanced Imunify360 protection capabilities. The mode this feature will be released in is “Experimental”. It is controlled by the MALWARE_SCANNING.enable_scan_cpanel config option.

By default the cPanel upload scanner feature is in the disabled state in 5.10, but you can enable it in the user interface. To do so please tick “Block malicious file uploads via cPanel File Manager” in Settings → Malware.

To switch on the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": true}}'

To switch off the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": false}}'

Additional information

Imunify360 v.5.10 includes 26 tasks and 38 bug fixes.

Internal records

DEF-16999
DEF-17000
DEF-17001

Several improvements for UI in Imunify AV were made: the main menu of ImunifyAV extended, cleanup buttons added, upgrade notice changed

DEF-17568

AI-Bolit release of new version

DEF-16977
DEF-16986
DEF-17026
DEF-17034
DEF-17053
DEF-17068
DEF-17095
DEF-17104
DEF-17113
DEF-17174
DEF-17193
DEF-17240
DEF-17248
DEF-17262
DEF-17295
DEF-17393
DEF-17285
DEF-17333
DEF-17463
DEF-17363
DEF-17365
DEF-17441

Deobfuscator enhancement

DEF-17052

Fix for a problem where RapidScan option is enabled, but the result shows 0 found files in AI-Bolit

DEF-16966

A hardcoded signature for Rapid Account Scan

DEF-17066

Implement different messages on MDS action complete

DEF-17111

Unable to detect signature samples although regex matches in AI-Bolit

DEF-17134
DEF-17511

A fix for the cleanup process

DEF-17170

A fix for a signature that was detected but not cured

DEF-17254

Problem with cleaning the sample in AI-Bolit

DEF-17273

A change making it necessary to always rescan HEURISTIC files in RAS database

DEF-17328

Check database for cleanup errors

DEF-17330

Consider sqlite files safe if they correspond to certain parameters

DEF-17364
DEF-17366

Cleanup improvements

DEF-17437

A fix for the cleanup of a file process

DEF-17451

Remove AVD requirement from AI-Bolit specification

DEF-17522

Fix for several Auditd log reader issues

DEF-17454

Fix for Imunify agent failing

DEF-17553

Security improvement for shared memory segments

DEF-9641 

ea4_main.local template on cPanel stays unmodified from now on

DEF-17625 

Graceful handling of arguments in cPanel upload scanner

Stay in touch

Please give our product team feedback on this version 5.10 release. Share your ideas and feature requests through feedback@imunify360.com or via our feedback form.

If you encounter any problems with this release, please send a comment or request to our Imunify support team via cloudlinux.zendesk.com.

How to install

To install the new Imunify360 v.5.10, please follow the instructions in the documentation.

How to upgrade

If you want to upgrade to the new Imunify360 version 5.10 right now, you can use the updated script by running the following commands:

wget https://repo.imunify360.cloudlinux.com/defence360/imunify-force-update.sh -O imunify-force-update.sh
bash imunify-force-update.sh

For the regular and safe update to Imunify360 version 5.10 with a gradual rollout.

CentOS/CloudLinux systems:

yum update imunify360-firewall

Ubuntu 16.04, 18.04, and 20.04 systems:

apt-get update
apt-get install --only-upgrade imunify360-firewall

Debian 9 and 10 systems:

apt-get update
apt-get install --only-upgrade imunify360-firewall
Subscribe to Imunify security Newsletter