Exploit Prevention Content version update 13776 for Endpoint Security and Host Intrusion Prevention is now available.
This update was posted to the update repository on May 14, 2025.
Summary of the release
- New Signature 6299 (ENS): Dll SideLoading Attempt By Host Process For Windows Sync Detected
- New Signature 6300 (ENS): Dll SideLoading Attempt By RemoteApp And Desktop Connection Runtime Detected
- Exploit Prevention content binaries are signed with New Musarubra certificates. Trellix V3 Virus Definition Updates (DATs) version 5766 (released on January 11, 2025) or later versions is a mandatory prerequisite for this Exploit prevention content update on ENS 10.7.x.
For more information, see the article Known Issue: The Exploit Prevention engine stops functioning after you update to content version 13776 or later.
For more information about this release, see the Release Notes.