Endpoint Detection and Response (EDR)

  • Private Community
 View Only

  • 1.  New Release: Symantec Endpoint Detection and Response (SEDR) 4.11

    Broadcom Employee
    Posted Apr 23, 2025 01:12 PM
    Edited by Brian Cummins Apr 23, 2025 01:14 PM

    We are pleased to announce that Symantec Endpoint Detection and Response (SEDR) 4.11 is now generally available (GA)!

    IMPORTANT: The SEDR 4.11 Upgrade ISO file is not yet available, but it is coming soon. The SEDR 4.11 Upgrade ISO is to be used by customers who are upgrading from version 4.9.x to 4.11. We advise customers who are still using version 4.9.x not to upgrade to version 4.10 in the interim; instead, these customers should wait to upgrade directly to 4.11, once the 4.11 Upgrade ISO becomes available. Stay tuned for a follow-up announcement about the GA of the SEDR 4.11 Upgrade ISO. Customers who are upgrading from 4.10 should do so via LiveUpdate, not via the 4.11 Upgrade ISO.

    Release Highlights

    • Custom incident rules

    • Linux and macOS support for Recorder Rules

    • Content updates via LiveUpdate Administrator for SEDR appliances in air-gapped networks

    • Support for multiple NTP servers for improved time synchronization and redundancy in case of failover

    • Export and download of full dump data

    • Allow List and Deny List usability enhancements - a delete all option and easy import via CSV to enable efficient cleanup

    • Audit logging for Advanced Attack Technique (AAT) incident rule changes

    • Email alerts for changes to the SEDR appliance's health status

    • File (8003) events include file scan disposition metadata for scanned files

    • Dashboard improvements to highlight the most important information, such as malicious and suspicious event volumes and open incidents

    • Support for an RSA certificate chained to a CA-provided root certificate, signed with elliptic curve cryptography (ECC)

    • Faster backups

    See What's New in Symantec Endpoint Detection and Response 4.11 for more information.



  • 2.  RE: New Release: Symantec Endpoint Detection and Response (SEDR) 4.11

    Broadcom Employee
    Posted Jun 23, 2025 03:45 PM

    UPDATE

    The SEDR 4.11 Upgrade ISO file (Symantec_Endpoint_Detection_and_Response-Upgrade-Install-4.11.0-225-Linux.iso) is now generally available!

    This file enables customers who are running SEDR 4.9.1 to upgrade directly to SEDR 4.11, rather than needing to complete an intermediate upgrade to SEDR 4.10 before upgrading to SEDR 4.11. See Upgrading Symantec EDR from Version 4.9 to Version 4.11 for more information.

    Note that customers who are upgrading from SEDR 4.10 to SEDR 4.11 should do so via LiveUpdate, not this ISO file.


    Original Message