Security hardenings for Security Server have been implemented according to CIS Benchmarks and CIS-CAT scan, achieving a score of 85%.

Improved the proxy settings for the Support Tool.

Events are now sent hourly to the syslog server. In addition, the syslog file maximum size is now 2 GB.

Security Server now stores the command history in the [bitdefender_directory]/var/log/history.log file for previous Terminal sessions.

The Security Server now retries failed updates.

Implemented a cleanup mechanism to remove unnecessary files.

All connections to Bitdefender servers are now performed via HTTPS.

Security fixes.

The Security Server embedded into GravityZone virtual appliance is no longer incorrectly displaying the 127.0.0.1 IP address.

Updated the library for the communication with GravityZone Control Center.

Bitdefender upgrades the operating system of the Security Server to Ubuntu 20.04. You can perform the OS update through the Update Security Server task from Control Center. For detailed information, best practices and upgrade steps, refer to Update the operating system of the Security Server to Ubuntu 20.04 LTS.

An incompatibility of the Citrix hypervisors prevented the Security Server OS upgrade to Ubuntu 20.04. Citrix has solved the issue and released the Citrix XS71ECU2060 hotfix for Citrix XenServer 7.1 LTSR.

LTSR and Citrix Hypervisor 8.2 LTSR. For detailed information, best practices and upgrade steps, refer to Update the operating system of the Security Server to Ubuntu 20.04 LTS.

Resolved an issue with scheduled security content updates.

Resolved an issue with security content update through proxy.

Policy was pending after installing the Security Server from an OVA. The issue occurred when the Security Server was connected to a GravityZone cloud console.

Resolved a critical issue that occurred after updating from the previous version.

Improved the prefiltering technologies for automatic file submission to Sandbox Analyzer. As a result, file selection is more rigorous.

Added support for automatic malware submission to Sandbox Analyzer.

Added support for the following operating systems:

Applied security patches to the underlying operating system of the Security Server.

Added support for Windows 10 20H2.

Security fixes.

Minor bug fixes.

Updates from the Bitdefender fallback Update Servers are now performed only via HTTPS. Learn more.

Added support for Citrix Hypervisor 8.2.

Added storage support for Remote Troubleshooting logs in Bitdefender Cloud (AWS S3).

Added support for user control over the data that Security Server sends to Bitdefender.

Security Server now reports more details regarding its update status, such as timestamps for successful operations, and the source location of the update files.

You can view these details in the Control Center > Network page, by viewing the Information > Protection tab for the selected Security Server.

Several anti-exploit improvements.

Added support for the following operating systems:

Added support for upcoming GravityZone features.

Added support for CentOS and Red Hat Enterprise Linux 6.8, 6.9 and 6.10.

Added support for scanning certain parts of an application's memory with the Antimalware engines.

Fixed an issue that was preventing protection from starting properly on Debian 8.

Several minor bug fixes.

Removed support for Citrix XenServer 7.5.

Disabled an optimization available for platforms with #VE support to avoid a security risk.

Fixed several minor issues.

Applied the latest OS security patches on the Security Server.

Improved the caching technology and Antimalware scanning performance.

CPU usage was high during On-Demand Scan tasks covering multiple VMs.

The service SSL certificates update was causing stability issues affecting the ICAP server.

In some corner cases, the introspection engine was generating false positive alerts.

Other minor service stability issues.

Added support for content submission from Sandbox Analyzer On-premises ICAP clients to Sandbox Analyzer On-premises. For more information, read the GravityZone Release Notes.

Added support for CentOS 8 and Windows 10 19h2.

Security Server is now able to scan command lines.

Resolved some crashes of the Security Server services that caused malfunction of the equal distribution mode for load balancing.

Uninstalling via GravityZone task failed when multiple Security Servers were deployed on the same Citrix Xen host.

Fixed several issues that caused high memory consumption on machines having over 16 GB of RAM.

Pausing and then resuming a VM running SUSE Linux Enterprise Server (SLES) 12 SP1 affects the ability of HVI to properly protect it.

In some corner case scenarios, Security Server may cause virtual machines to stop working.

Added support for update rings. Security Server updates will be released on Fast and Slow rings.

Security Servers now support evenly distribution of assigned endpoints, through the new Load Balancing mechanism.

Security Server can receive updates through a HTTPS secured channel. Make sure to open port 443 to allow communication with Bitdefender Update Servers. Learn more.

Added support for the following Windows operating systems:

Performance improvements on the protected Linux VMs.

Overall performance improvements on hosts with Broadwell processors or newer.

HVI support for new versions of the operating systems is now performed on-the-fly, without the need of product update.

Improved the scanning caching mechanism.

In all-in-one GravityZone deployments, regardless of the installation method – automatic or manual, Security Server was incorrectly reporting as outdated.

The encryption mechanism on the scanning channel between Bitdefender Endpoint Security Tools and Security Server was malfunctioning.

Bitdefender Endpoint Security Tools with Central Scan was generating a deadlock on Windows Server 2008 R2 systems due to an issue at Security Server.

Resolved several issues with a minor impact on product stability.

Updated the sensitivity of the algorithm for computing the overload. Security Server will report a more accurate overload status in Control Center.

On specific builds of Windows 10 RedStone 4, the hooking of memory pages was malfunctioning. In such scenarios false positives were created.

Applied the latest security patches to Security Server's operating system.

Security Server is reporting a more accurate load status in Control Center.

Added a new protection layer for Descriptor Table Register to ensure the integrity of the guest VM.

This layer is embedded in the Kernel space module and enabled via the IDT/GDT integrity policy option.

Implemented a Denial of Service mechanism to prevent flooding of the Control Center with events during continuous attacks.

The memory dumps could fill all available disk space in case of consecutive crashes of the Security Server services.

The encryption mechanism on the scanning channel between Bitdefender Endpoint Security Tools and Security Servers was malfunctioning.

When using the HyperDetect technology, caching of clean command line instructions was not performed as intended.

When used in conjunction with the Storage Protection feature, some scanning options were not functioning properly.

In XenServer 7.6 environments, the policy was reset to Default when VMs migrated to other hosts.

Resolved some false positives caused by Java compatibility issues.

When multiple Security Servers were configured in Nutanix AFS, they were not properly leveraging the caching mechanism of the NAS.

Applied the latest security patches to Security Server's operating system.

Security Server has now SNMP packages installed by default. However, you need to add the snmpd daemon to startup in case SNMP queries are to be used.

Improved the product stability in HVI stress scenarios related to a high amount of changes at the policy settings.

Added support for SUSE Linux Enterprise Server 12 SP4, 64-bit

Added support for Windows 10 Redstone 5, 64-bit with KB4476976 applied

Added an advanced caching mechanism to improve scanning speed for any supported storage device.

Other minor improvements