Description


Product Updates for May.


Please note that some of these features are being enabled gradually. 


Updates:


Avanan:


Preview Malicious PDFs with Visual and Forensic Clarity

  • Avanan now allows customers to investigate PDF files flagged as malicious—either from email attachments or files shared via supported collaboration apps—can now preview both:
    • A screenshot of the file's content, offering a quick visual snapshot of what the user would have seen.
    • A detailed reasoning report, outlining the exact indicators that led to the malware detection, as determined by Avanan's Anti-Malware and Threat Emulation engines.

  • This enhancement helps analysts validate detections faster, understand user impact at a glance, and triage efficiently—without unnecessary downloads or redundant sandboxing.
  • To access the full preview and report:
    • Navigate to the entity page of the detected file or attachment > In the Anti-Malware results section, click “View Report.” > You'll see the detailed forensic analysis and a visual preview of the PDF content.


New Graymail Workflow for Gmail: Subject Prefixing Now Supported

  • Gmail customers can now manage graymail more effectively with new workflow options
  • New Workflow Options for Gmail Customers: 
  • With this release, administrators protecting Gmail environments can now choose between the following graymail handling options:
    • Do nothing – Deliver the message to the user’s inbox with no changes.
    • Treat as Spam – Apply the same policy workflow defined for Spam messages in the organization’s configuration. This provides consistent enforcement without duplicating policy logic.
    • Add subject prefix – Insert a customizable prefix (e.g., “[Promotional]”) into the subject line, helping users easily identify and optionally filter graymail.


DKIM Management and Hosting Now Generally Available

  • DKIM management and hosting is now generally available.


Granular Custom Roles Now Available in Avanan

  • Avanan now supports the creation of granular custom roles, giving administrators precise control over what each user can see or manage in the portal.
  • Administrators can assign users to highly specific roles that reflect their business function. For example, roles with full read-write access to policy and exception configurations but restricted from modifying DLP data types and categories. Roles can be set as view-only, hide specific sections, or allow full control—ensuring the principle of least privilege is consistently enforced.
  • To configure Custom Roles, go to System Settings > Roles. From there, you can create a new role or select an existing one to clone and customize it.


Guardz

MFA Detection Improvement : Reason Display

  • Each detection now includes a clear explanation of why it was flagged as unsafe.
  • Users will now see the specific reason a detection was triggered, providing better clarity and reducing confusion.
  • This update helps clarify the root cause behind each MFA detection and makes it significantly easier to identify and resolve configuration issues.
  • Detection reasons for different environments:
  • Google Workspace
    • User is not enrolled in 2-Step Verification.
  • Microsoft 365 Three possible reasons:
    • Security Defaults are not enabled for the entire organization.
    • Per-User MFA is not enabled for the specific user.
    • Conditional Access: The user is either explicitly excluded or not included in any policy.


External Scan Enhancements

  • Guardz has significantly reduced the delay between issue remediation and follow-up scans:
    • Previous behavior: Scan triggered 12 hours after remediation, unresolved issues reopened after 4 days.
    • New behavior: Scan now starts approximately 1 hour after remediation. If the issue persists, it will reopen after just 1 day.
  • New HTTP Protocol Vulnerability Checks
    • Guardz has expanded our scan coverage to include new checks over HTTP, enhancing detection capabilities across several technologies:
      • Apache
      • Microsoft IIS
      • PHP


Dropsuite:


Entra Improvements

  • BitLocker is a built-in security feature in Windows that encrypts drives to help users protect data from unauthorized access, especially in cases like theft or loss of a device.
  • Good news! The system now supports backup for BitLocker Recovery Keys, providing users with enhanced protection.


Microsoft 365 Sub-Calendar Backup and Restore

  • Dropsuite have added disclaimer text in the sub-calendar restore pop-up to help users better understand how the system works


Retention Policy

  • Take advantage of the extended retention period, which is available for up to 13 years. - Only available for the Archiver plan


Bug Fixes

  • SharePoint Backup: Fixed discrepancy in the number of backed-up sites between the portal and M365.
  • OneDrive Backup: Fixed the 503 error while accessing the OneDrive details page.


MPaware:


Training Status Reminder Email

  • The Training Status Reminder Email is now available for implementation.
    • It is a consolidated email notification designed to give users a complete snapshot of their training journey. It helps users stay informed about new trainings, trainings they have yet to complete, and their Employee Secure Score (ESS)—all in one place.
    • This feature can be fully managed by Partner Admins and Manager Admins to meet the needs of the organization. It can be set at the client level or applied globally across all clients via the Partner Profile.
    • If notification fatigue is a concern, you can disable existing emails like the Annual Training Reminder, Micro Training Reminder, and the Weekly Micro Training & Monthly Newsletter.


Catch Phish Updates

  • The Catch Phish Email Plug-in is now available in the Microsoft Store. It has also been updated to reflect our transition from PII Protect to Breach Secure Now.
  • Additionally, the issue preventing the older version of Catch Phish from loading for some users has been resolved.
    • Applying the fix requires removing the existing version of Catch Phish and re-deploying the updated version.


Various Fixes to Improve Stability, Scalability, and Security

  • The MPaware team has been diligently executing backend updates to enhance your platform experience, as well as that of your users.


For any questions, please email support@manageprotect.com