Cylance

Cylance enables you to monitor and track threats in your organization using the CylancePROTECT data. Logpoint aggregates and normalizes the CylancePROTECT logs so you can analyze the information through a dashboard.

Release Details

Version:5.1.0

Release date: April 26, 2024

Supported On: Logpoint v7.4.0 or later for log source template

Documentation: Cylance guide

SHA 256: 909d96c6f61c0b057a54c6c16fee402c7a26a84d5bf8915ba8556437ecbbdb0a

Download

Enhancement

Description	Issue ID	Reference ID
Added Syslog Collector based Cylance log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template.	KB-22661	-

Past Release

Cylance v5.0.3

Release Date: May 17, 2018

Supported On: Logpoint 6.7.0 or later

Download: Cylance_5.0.3.pak

SHA256: a9757dfd89be43c350ba39f63051a39203fc0fc00618e8f7cc9db90b438c20ab

Enhancement

Description

Issue ID

Reference ID

Added the following alerts. To learn more, go to Cylance Alerts.

LP_CylanceEPO Memory Exploit Attempt Detected
LP_CylanceEPO Malware Detected
LP_CylanceEPO Suspicious Threat Detected

KB-16628

Bug Fix

Description	Issue ID	Reference ID
The token field of Cylance log was not normalized by CylanceEPOCompiledNormalizer.	KB-11154	47566

Cylance v5.0.1

Enhancement

A minor update has been done in the Cylance's normalizer for better signature handling.

Cylance v3.5.0

Release Date: May 14, 2020

Supported On: Logpoint 6.7.0 or later

Download: Cylance_3.5.0.pak

SHA256: 1df2823dd1b1890846654e0d4c32bfb5b3b7c0452915007341762ef661f13170

Enhancement

A minor update has been done in the Cylance's normalizer for better signature handling.

Support

If you have any questions or require assistance, create a support ticket.

Cylance

Enhancement

Past Release

Cylance v5.0.3

Enhancement

Bug Fix

Cylance v5.0.1

Enhancement

Cylance v3.5.0

Enhancement

Support

Comments

Related articles