26 new file types support including Video, Email and more

Overview

We are excited to announce a major release, v5.4, of Data Sanitization (also known as CDR). With this release, we address two new use cases. The first protects isolated networks from threats borne by email messages on portable media. The second implements a set of countermeasures to threats in video files. Additionally, in this release, we add support for many additional file formats including Microsoft Office Template (XLT and POT) and AutoCAD (DXF and DWF). Last but certainly not least, this release improves one of the most popular features in our product, Forensic info, by more clearly revealing what objects were removed or altered as a result of data sanitization.

Email files stored on portable media

End users may store their email files on portable media when entering isolated networks with the intent of viewing for forwarding these files from computers inside that network. In this scenario, the portable media may contain files in the EML format. With this release, we support processing of any attachments to EML files which are themselves supported by OPSWAT Data Sanitization.

Video file

Five years ago we published a blog post warning how video file formats can be abused so to deliver malware. After years of hard work and development, we're extremely excited to announce that we now support video file sanitization, starting with the MP4 and WMV formats We will soon publish a technical blog post in which we will share more details about our support for these file formats and how our Data Sanitization can prevent threats in video file formats.

26 New file types

We remain committed to adding new file types to our solution in order to address a wide variety of customer use cases. In this release, we add support for 26 additional file types bringing the total of supported file types to 71 with more than 250 processing options. The newly added file types are being released as a "public beta". For the full list of newly supported file type, see the release note.

<h23forensic info="" details <="" h3="">

During our sanitization process, several objects (e.g., macro and attachments) in the original file will not be reconstructed and included in the sanitized file; other objects (e.g. images) will be reconstructed and included the sanitized file. With this release we introduce "Forensic info" which provides details of actions taken for each file sanitized. Forensic info includes the number of objects in each file, the object names and the actions applied to each object. Forensic info is available in MetaDefender scan result using REST API. Forensic info may be particularly useful to IT administrators or security officers interested in seeing what kinds of potential threat objects traverse their organization. Additionally, Forensic info makes it easier for users to more thoroughly understand how OPSWAT Data Sanitization prevents threats without threat detection and to compare our solution against that of competitors.

Image sanitization improvement

Image format sanitization is a challenging technical problem upon which we focus effort and attention in every release. This is because our sanitization approach is not limited to merely reconstructing image files; we also introduce countermeasures in case mere reconstruction is insufficient to eliminate threats. Our countermeasures process requires high levels of system resources with a noticeable performance impact. In this release, we have improved the underlying architecture of our countermeasure process, thereby improving performance. In our release testing, we observed a 30% improvement in image processing time and improved memory consumption. Please contact OPSWAT customer support if you would like to get access to our configuration guide for image processing.

Many more enhancements and bug fixes

• More stable DOCX, PPTX sanitization in Linux
• Many more enhancements and bug fixes for PDF/XLS/PPT/HTML sanitization