New WatchGuard Endpoint Security| WatchGuard Blog

We’re excited to deliver innovative improvements across the WatchGuard Endpoint Security portfolio, now available to customers and partners. Security teams face two realities at once: stealthier threats and noisier operations. This update focuses on outcomes, stronger prevention against fileless and living-off-the-land attacks, and faster, clearer investigations that reduce alert fatigue and mean time to respond (MTTR).

What’s new in WatchGuard Endpoint Security

Automated incident reconstruction, in Advanced EPDR: Related alerts are consolidated into a single incident with affected entities, a timeline, and MITRE ATT&CK mapping, so you see the full attack path at a glance.
GenAI Assistant in Advanced EPDR: Ask complex questions in plain language; no query syntax is required. Accelerate triage and deep dives in telemetry.
Quality-of-life updates: Script-blocking options and HTTP/3 (QUIC) support in Web Access Control, plus a Zero-Trust Monthly Report and Restart Windows to schedule updates regularly with minimal disruption.

Who benefits

SMEs: Stronger default prevention from AI agents; simple reporting with the Zero-Trust Monthly Report.
Regulated or audited environments: Incident timelines with MITRE mapping and monthly Zero-Trust Application Service reporting for reviews and evidence.
Security-mature teams: Fewer alerts and clearer next steps via incident-centric investigation, plus GenAI to boost productivity on day one.

Explore the WatchGuard Endpoint Security family, including EPP, EPDR, and Advanced EPDR, and see how this update helps your team prevent more and investigate faster. Talk to your WatchGuard partner or contact us to learn more.