<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-5HLVVHN" height="0" width="0" style="display:none;visibility:hidden">
Aug 24, 2021 8:08:34 AM
Yelena Gerassimenko
Yelena Gerassimenko
Yelena Gerassimenko is a product manager who facilitates Imunify 360 growth at CloudLinux, Inc. With 12 years of experience in an industry, Yelena is a cybersecurity enthusiast, always interested in discovering new and better ways to secure your servers

Release Notes: Imunify360 v.5.10 beta

IM-beta-release

We’re pleased to announce a new beta version of Imunify360, version 5.10, is now available. The following features are new in the v5.10 beta release:

  • cPanel upload scanner
This feature allows to block malicious file uploads via cPanel File Manager as well as prevents content modification leading to malware injections.

This is what we’ve updated in version 5.10: 

cPanel upload scanner experimental

Our statistics on infection vectors clearly shows that attackers quite often upload malware via the cPanel interface. We came up with a revolutionary approach that will control malicious file upload and prevent infection with the help of AI-Bolit.

Using cPanel hooks Imunify360 blocks malicious actions made in cPanel File Manager. Each time when a potential attacker uploads files Imunify360 will initiate a scan before the file will be saved to actual location. The type of operations it processes are: edits and saves. All malicious actions registered by cPanel upload scanner are available for viewing in the list of incidents.

This feature provides enhanced Imunify360 protection capabilities. The mode this feature will be released in is “Experimental”. It is controlled by the MALWARE_SCANNING.enable_scan_cpanel config option.

By default the cPanel upload scanner feature is in the disabled state in 5.10, but you can enable it in the user interface. To do so please tick “Block malicious file uploads via cPanel File Manager” in Settings → Malware.

To switch on the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": true}}'

To switch off the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": false}}'

Additional information

Imunify360 v.5.10 includes 26 tasks and 38 bug fixes.

Internal records

DEF-16999
DEF-17000
DEF-17001

Several improvements for UI in Imunify AV were made: the main menu of ImunifyAV extended, cleanup buttons added, upgrade notice changed

DEF-17568

AI-Bolit release of new version

DEF-16977
DEF-16986
DEF-17026
DEF-17034
DEF-17053
DEF-17068
DEF-17095
DEF-17104
DEF-17113
DEF-17174
DEF-17193
DEF-17240
DEF-17248
DEF-17262
DEF-17295
DEF-17393
DEF-17285
DEF-17333
DEF-17463
DEF-17363
DEF-17365
DEF-17441

Deobfuscator enhancement

DEF-17052

Fix for a problem where RapidScan option is enabled, but the result shows 0 found files in AI-Bolit

DEF-16966

A hardcoded signature for Rapid Account Scan

DEF-17066

Implement different messages on MDS action complete

DEF-17111

Unable to detect signature samples although regex matches in AI-Bolit

DEF-17134
DEF-17511

A fix for the cleanup process

DEF-17170

A fix for a signature that was detected but not cured

DEF-17254

Problem with cleaning the sample in AI-Bolit

DEF-17273

A change making it necessary to always rescan HEURISTIC files in RAS database
DEF-17328

Check database for cleanup errors
DEF-17330

Consider sqlite files safe if they correspond to certain parameters

DEF-17364
DEF-17366

Cleanup improvements
DEF-17437

A fix for the cleanup of a file process
DEF-17451

Remove AVD requirement from AI-Bolit specification
DEF-17522

Fix for several Auditd log reader issues
DEF-17454

Fix for Imunify agent failing
DEF-17553

Security improvement for shared memory segments

Stay in touch

Please give our product team feedback on this version 5.10 release. Share your ideas and feature requests through feedback@imunify360.com or via our feedback form.

If you encounter any problems with this beta release, please send a comment or request to our Imunify support team via cloudlinux.zendesk.com.

How to install

To install the new Imunify360 v.5.10 beta, please follow the instructions in the documentation.

How to upgrade

To upgrade Imunify360 on CentOS/CloudLinux systems, run the command:

yum update imunify360-firewall --enablerepo=imunify360-testing

To upgrade Imunify360 on Ubuntu 16.04, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/ubuntu-testing/16.04/ xenial main' > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Ubuntu 18.04, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/ubuntu-testing/18.04/ bionic main' > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Ubuntu 20.04, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/ubuntu-testing/20.04/ focal main' > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Debian 9, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/debian-testing/9/ stretch main'  > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Debian 10, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/debian-testing/10/ buster main'  > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

Release Notes: Imunify360 v.5.10 beta

Aug 24, 2021 8:08:34 AM
Yelena Gerassimenko Yelena Gerassimenko

IM-beta-release

We’re pleased to announce a new beta version of Imunify360, version 5.10, is now available. The following features are new in the v5.10 beta release:

  • cPanel upload scanner
This feature allows to block malicious file uploads via cPanel File Manager as well as prevents content modification leading to malware injections.

This is what we’ve updated in version 5.10: 

cPanel upload scanner experimental

Our statistics on infection vectors clearly shows that attackers quite often upload malware via the cPanel interface. We came up with a revolutionary approach that will control malicious file upload and prevent infection with the help of AI-Bolit.

Using cPanel hooks Imunify360 blocks malicious actions made in cPanel File Manager. Each time when a potential attacker uploads files Imunify360 will initiate a scan before the file will be saved to actual location. The type of operations it processes are: edits and saves. All malicious actions registered by cPanel upload scanner are available for viewing in the list of incidents.

This feature provides enhanced Imunify360 protection capabilities. The mode this feature will be released in is “Experimental”. It is controlled by the MALWARE_SCANNING.enable_scan_cpanel config option.

By default the cPanel upload scanner feature is in the disabled state in 5.10, but you can enable it in the user interface. To do so please tick “Block malicious file uploads via cPanel File Manager” in Settings → Malware.

To switch on the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": true}}'

To switch off the feature through the CLI please use the following command:

imunify360-agent config update '{"MALWARE_SCANNING": {"enable_scan_cpanel": false}}'

Additional information

Imunify360 v.5.10 includes 26 tasks and 38 bug fixes.

Internal records

DEF-16999
DEF-17000
DEF-17001

Several improvements for UI in Imunify AV were made: the main menu of ImunifyAV extended, cleanup buttons added, upgrade notice changed

DEF-17568

AI-Bolit release of new version

DEF-16977
DEF-16986
DEF-17026
DEF-17034
DEF-17053
DEF-17068
DEF-17095
DEF-17104
DEF-17113
DEF-17174
DEF-17193
DEF-17240
DEF-17248
DEF-17262
DEF-17295
DEF-17393
DEF-17285
DEF-17333
DEF-17463
DEF-17363
DEF-17365
DEF-17441

Deobfuscator enhancement

DEF-17052

Fix for a problem where RapidScan option is enabled, but the result shows 0 found files in AI-Bolit

DEF-16966

A hardcoded signature for Rapid Account Scan

DEF-17066

Implement different messages on MDS action complete

DEF-17111

Unable to detect signature samples although regex matches in AI-Bolit

DEF-17134
DEF-17511

A fix for the cleanup process

DEF-17170

A fix for a signature that was detected but not cured

DEF-17254

Problem with cleaning the sample in AI-Bolit

DEF-17273

A change making it necessary to always rescan HEURISTIC files in RAS database
DEF-17328

Check database for cleanup errors
DEF-17330

Consider sqlite files safe if they correspond to certain parameters

DEF-17364
DEF-17366

Cleanup improvements
DEF-17437

A fix for the cleanup of a file process
DEF-17451

Remove AVD requirement from AI-Bolit specification
DEF-17522

Fix for several Auditd log reader issues
DEF-17454

Fix for Imunify agent failing
DEF-17553

Security improvement for shared memory segments

Stay in touch

Please give our product team feedback on this version 5.10 release. Share your ideas and feature requests through feedback@imunify360.com or via our feedback form.

If you encounter any problems with this beta release, please send a comment or request to our Imunify support team via cloudlinux.zendesk.com.

How to install

To install the new Imunify360 v.5.10 beta, please follow the instructions in the documentation.

How to upgrade

To upgrade Imunify360 on CentOS/CloudLinux systems, run the command:

yum update imunify360-firewall --enablerepo=imunify360-testing

To upgrade Imunify360 on Ubuntu 16.04, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/ubuntu-testing/16.04/ xenial main' > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Ubuntu 18.04, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/ubuntu-testing/18.04/ bionic main' > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Ubuntu 20.04, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/ubuntu-testing/20.04/ focal main' > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Debian 9, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/debian-testing/9/ stretch main'  > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall

To upgrade Imunify360 on Debian 10, run the following command:

echo 'deb https://repo.imunify360.cloudlinux.com/imunify360/debian-testing/10/ buster main'  > /etc/apt/sources.list.d/imunify360-testing.list
apt-get update
apt-get install --only-upgrade imunify360-firewall
Subscribe to Imunify security Newsletter
aicpa soc
pci-dss
eu gdpr compliant
© All rights reserved. Imunify360 and CloudLinux Backup are the registered trademarks of CloudLinux Inc.