Desktop Bitdefender GravityZone updates blocked by Zyxel's Bitdefender definitions

BCC

Sharing with others who are possibly trying to figure this out: as of Feb 17, Zyxel's anti-malware functionality on ATP/USG devices is detecting and blocking Bitdefender updates for internal desktop installations. Suspecting false-positive but can't be certain. Is anyone else experiencing this issue?

PS. I am not getting far with Bitdefender or Zyxel support. The best part of this is that Zyxel anti-malware is using Bitdefender engine/definitions!

Mario

Hi BCC

The ATP runs now with mcafee (sinc V 4.50 AFAIK)*

First it was Kaspersky, then bitdefender for a short time and now mcafee.

Do you have logs for the blocking?

*see https://www.zyxel.com/news/Zyxel-partners-with-McAfee-to-provide-robust-one-box-security-solution-to-SMBs-20200423-624159.shtml

BCC

@Mario my understanding is that the AV definitions are still from Bitdefender, unless this just changed. McAfee is providing content filtering features. It would be good to have some clarification from Zyxel on this.

Zyxel_Jeff

Hi @BCC

Currently, the Anti-Malware of ATP is using Bitdefender. 

And this symptom is the virus signature update won’t be forwarded to LAN's hosts which install Bitdefender anti-virus software.

The upcoming new Anti-Malware signature update will fix this symptom.

BCC

@Zyxel_Jeff isn't also Webroot used for some of ATP functionality? Does Zyxel have any information or documentation outlining which vendors are used for which feature of ATP? I couldn't find anything. Please share so we can distribute internally.

Zyxel_Jeff

The fixed signature version is 2.1.x.20210222.0(included) later.

Please update to the latest Anti-Malware signature which fixed this symptom.

BTW, you can refer to this link regarding to Zyxel’s Alliance Partners.

https://www.zyxel.com/about_zyxel/alliance_partners.shtml

Thanks.