Exploit Prevention Content version update 12941 for Endpoint Security and Host Intrusion Prevention is now available.
This update was posted to the update repository on May 10, 2023.
Summary of this release:
- New Signature 6252: T1003 – Suspicious Lsass Read Access Detected (applicable on Endpoint Security only)
- Bug fixes and improvements for existing Exploit Prevention Content Signatures
For more information, see the Release Notes.