What's new in this release of BlackBerry
Protect
BlackBerry
Protect
CylancePROTECT
for BlackBerry UEM
is rebranded in this release to BlackBerry Protect Mobile
for UEM
.Feature | Description |
|---|---|
SMS text message scanning on iOS devices | When a user receives an SMS text message from an unknown contact that contains a URL, the UEM Client sends the message to the CylanceINFINITY cloud service in real time to determine if it is safe. If it is unsafe, the message is moved to the Junk folder and the user can choose to delete the message. If the user clicks the link, safe browsing rules take effect. |
Approve or block IP addresses for safe browsing | You can add specific IP addresses or IP address ranges to the approved list or blocked list in the UEM management console. A BlackBerry
Dynamics app will check a URL against the approved list and blocked list before sending it to CylanceINFINITY or using local machine learning models. |
Safe browsing support for BlackBerry Desktop | BlackBerry Desktop now supports the BlackBerry
Protect safe browsing feature. Administrators can enable safe browsing so that when a user clicks a potentially unsafe link in BlackBerry Desktop , the user can be warned or blocked from accessing the unsafe link. |
Send system events to a SIEM solution | Security Information and Event Management (SIEM) software collects, analyzes, and aggregates security data from multiple sources to detect potential security threats. UEM 12.13 supports sending system events, including BlackBerry
Protect events, to your organization’s SIEM software. |
New compliance options for BlackBerry
Dynamics hardware certificate attestation | You can now specify how often UEM tests the integrity of devices that are not in compliance, the minimum security level for hardware certificate attestation, and the compliance actions to take when the hardware attestation boot state is unverified. |
Fixed issues
The following issues are fixed in this release:
- SomeSamsungsystem apps might have been flagged as malware.
- If you enabled "Malicious system app detected" in a compliance profile, but you did not enable "Malicious app package detected", the compliance action for system apps was not executed. (2879083)
- If you turned off "Scan system apps" in aBlackBerry Protectprofile, previously reported compliance violations for system apps were not cleared from the management console orUEMdatabase. (2879007)
- If you removed a compliance profile from a user, and then reassigned a compliance profile with "Malicious system app detected" enabled and configured to prompt the user, the compliance action for the rule was executed without prompting the user. (2877265)
- If you removed aBlackBerry Protectprofile from a user, and the user did not have aBlackBerry Protectprofile assigned for a period of time that exceeded theAndroidhardware certificate attestation grace period, when you assigned aBlackBerry Protectprofile to the user again, the device was considered out of compliance until the next attestation challenge. (2799860)