Exploit Prevention Content version update 13919 for Trellix Endpoint Security and Host Intrusion Prevention is now available.
This update was posted to the update repository on January 14, 2026.
Summary of this release
- Signature 6324: Dll SideLoading Attempt By CTF Loader Detected
- Signature 6325: Dll SideLoading Attempt By ETD Control Center Helper Detected
- Signature 6326: Dll SideLoading Attempt By RemoteApp and Desktop Connection Runtime Broker Detected
- Signature 6327: Dll SideLoading Attempt By RemoteApp and Desktop Connection Runtime Detected
- Signature 6328: T1218.005 Fileless Threat: MSHTA.exe Abuse For Proxy Execution Of Possibly Malicious Code
For more information, see the Release Notes.
Note: To receive information about product updates, sign up for the Support Notification Service.
For instructions, see the Thrive Portal User Guide and navigate to Profile and Settings > My Settings > Manage Support Notification Services (SNS) subscription preferences.