We’re excited to announce Advanced Security v7.5, focused on a major upgrade to our ransomware defense engine.

In this release, we’ve supercharged the ransomware protection driver. It now monitors not only I/O events, but also registry change events and process creation events for broader and earlier threat detection.

We also improved the ransomware protection pipeline itself to process events faster than before, reducing response time when suspicious behavior is detected.

As a result, ransomware protection in v7.5 is more efficient and helps defend against an even wider range of ransomware attack techniques.

Soft lock for Bruteforce Protection

Administrators often receive support requests from users who accidentally lock themselves out after mistyping their password a few times. The new Soft Lock option in Bruteforce Protection addresses this by temporarily blocking an IP address instead of permanently banning it. The block is automatically lifted after a configurable duration, and repeated offenses can still escalate to a permanent ban. This strikes a better balance between security and usability on busy servers.

The full changelog of this version can be found below:

Improvements:

• Ransomware Protection: improved ransomware detection engine with faster event processing

• Geographic Protection: updated IP / Countries database

• Geographic Protection: updated Microsoft and CloudFlare public IP space

• Bruteforce Protection: added optional Soft Lock mechanism

Fixes:

• Bruteforce Protection: fixed translations

• Audit: fixed rule "Firewall should be enabled"