Endpoint Security Platform Release Notes
Applies To: Endpoint Security Elite, Endpoint Security 360, Endpoint Security Prime,Endpoint Security Basic, WatchGuard EDR, WatchGuard EDR Core
| Release Information | Date |
|---|---|
| Latest Endpoint Security Update | 1 April 2026 |
WatchGuard periodically updates Endpoint Security products and modules to provide enhancements and resolve reported issues. Upgrade notifications appear as alerts in the upper-right corner of the management UI. For information on the enhancements and resolved issues in each update, go to the appropriate page for your product:
- WatchGuard Endpoint Security Basic Enhancements and Resolved Issues
- EDR Core (Total Security Suite) Release Notes
- WatchGuard EDR Enhancements and Resolved Issues
- WatchGuard Endpoint Security Prime Enhancements and Resolved Issues
- WatchGuard Endpoint Security 360 Enhancements and Resolved Issues
- WatchGuard Endpoint Security Elite Enhancements and Resolved Issues
- Multi-Tenant Endpoint Security — Enhancements and Resolved Issues
- WatchGuard Product Support Information (PSInfo) Tool — Enhancements and Resolved Issues
WatchGuard EDR Core is included in the Firebox Total Security Suite. It is available for a limited number of endpoints, based on the Firebox model. With a Total Security Suite subscription license, you will see an EDR Core license in WatchGuard Cloud. You can use WatchGuard Cloud to manage EDR Core endpoint allocation and to access the Endpoint Security management UI. For more information, go to WatchGuard EDR Core Features in Help Center.
The WatchGuard Endpoint Security solution includes these products:
WatchGuard Endpoint Security Basic (evolved from WatchGuard EPP)
Endpoint Security Basic provides strong protection with AI-powered EDR that automatically stops threats with virtually no management. It prevents known and unknown malware, including ransomware attacks with endpoint protection features such as next-gen antivirus, firewall, device control, and URL filtering.
Endpoint Security Basic supports these client platforms: Windows (Intel and ARM), Linux, macOS (Intel and ARM), iOS, and Android.
Go to: WatchGuard Endpoint Security Basic Enhancements and Resolved Issues
WatchGuard EDR (WatchGuard Endpoint Detection and Response)
Detects and responds effectively to any type of unknown malware, as well as the fileless and malwareless attacks that traditional solutions cannot detect. It relies on the Zero-Trust Application service, which prevents the execution of any binaries until they are validated as trusted. WatchGuard EDR can coexist with traditional security solutions, and complement them. It works on Windows (Intel & ARM), Linux and macOS (Intel & ARM) platforms.
Go to: WatchGuard EDR Enhancements and Resolved Issues
WatchGuard Endpoint Security Prime
Endpoint Security Prime integrates the full prevention, detection and response capabilities of Endpoint Security Basic with full EDR capabilities, including advanced malware detection, anti-exploit protection, threat hunting, and attack surface reduction. Endpoint Security Prime does not include the Zero-Trust Application Service, Endpoint Access Enforcement, or Program Blocking features.
Endpoint Security Prime supports these client platforms: Windows (Intel and ARM), Linux, macOS (Intel and ARM), iOS, and Android.
Go to: WatchGuard Endpoint Security Prime Enhancements and Resolved Issues
For information on the Endpoint Security Prime early access program, go to About Endpoint Security Prime in Help Center.
WatchGuard Endpoint Security 360 (formerly WatchGuard EPDR)
Endpoint Security 360 prevents, detects, and responds to any type of known and unknown malware, as well as fileless and malwareless attacks. It expands on the capabilities of Endpoint Security Prime with the Zero-Trust Application Service to prevent applications and processes from running until they are validated as trusted. It also controls connections among endpoints to block lateral movements within the network. Endpoints with Endpoint Security 360 installed can send data to ThreatSync.
Endpoint Security 360 supports these client platforms: Windows (Intel and ARM), Linux, macOS (Intel and ARM), iOS, and Android.
Go to: WatchGuard Endpoint Security 360 Enhancements and Resolved Issues
WatchGuard Endpoint Security Elite (formerly WatchGuard Advanced EPDR)
Endpoint Security Elite extends Endpoint Security 360 functionality with additional capabilities designed for security operations teams to discover undetected threats on their customer endpoints. Endpoint Security Elite includes advanced detection and response features such as centralized management of Indicators of Compromise (IOCs) compatible with STIX and Yara rules, Advanced Security Policies, and remote access to detect, contain, and remediate incidents. Endpoints with Endpoint Security Elite installed can send data to ThreatSync.
Endpoint Security Elite supports these client platforms: Windows (Intel and ARM), Linux, and macOS (Intel and ARM).
Go to: WatchGuard Endpoint Security Elite Enhancements and Resolved Issues
Multi-Tenant Endpoint Security Management UI
Centrally manages security setting profiles for the computers and devices on the network through WatchGuard Cloud accounts and account groups.
Go to: Multi-Tenant Endpoint Security — Enhancements and Resolved Issues
Endpoint Security Modules
Enhancements and resolved issues for modules appear in the Release Notes files for the core products that support the module.
The WatchGuard Endpoint Security solution includes add-on modules:
WatchGuard Full Encryption
Encrypts and decrypts disks and USB drives centrally without impact to end users.
WatchGuard Patch Management
Manages operating system and third-party application vulnerabilities on your workstations and servers.
WatchGuard Advanced Reporting Tool
Generates security intelligence and IT insights to pinpoint attacks, unusual behavior, and internal misuse.
WatchGuard Data Control
Discovers and monitors personal and sensitive data across endpoints and servers to comply with data protection regulations. Only available in select countries.
Endpoint Security 1-Year Data Retention
Extend the data retention period for your endpoints to 365 days. Only available with Endpoint Security Elite, 360, and Prime.
WatchGuard SIEMFeeder
Enriches and sends data from your Endpoint Security product to your company SIEM server.
WatchGuard Core MDR
Core MDR supports endpoints protected by Endpoint Security products and is managed as an Endpoint Security module license. With WatchGuard Core MDR, approved partners can access 24/7/365 managed detection, response, and threat hunting services, including direct access to the WatchGuard Security Operation Center.
Core MDR for Microsoft supports endpoints protected by Microsoft Defender for Endpoints. Go to: WatchGuard Managed Services Release Notes (external link)
WatchGuard Orion
With Orion, approved security operations teams can use security analytics at scale to detect, hunt, investigate, and respond to advanced threats in the early stages of the cyber kill chain.
PSInfo Tool
The WatchGuard Product Support Information (PSInfo) tool enables you to save support-related information to a file that Support can use to troubleshoot your case.
Go to: WatchGuard Product Support Information (PSInfo) Tool — Enhancements and Resolved Issues