New features

Copy current article URL Share via email

This article (PDF) Whole documentation (PDF)

New Integrations section

In the new Integrations section, you can explore, enable, and manage all integrations in one place. This release introduces Microsoft Entra ID and Active Directory to enrich incident context with identity details and streamline investigations. Identity indicators from Microsoft Entra ID also strengthen detection of identity-driven threats. In upcoming releases, we'll add new response actions and expand XDR integrations with third-party systems for broader security coverage.

Important note: This section will become available automatically several weeks after the release. Learn more

New Advanced Search section

This new section makes it easy to quickly search through indicators, helping you streamline investigation workflows and efficiently filter large volumes of logs. The Detections section is now marked as legacy and partially replaced by Advanced Search. Remaining detection workflows are primarily covered under Incidents. Learn more

Added AI Advisor

We've migrated AI Advisor from ESET Inspect to the Incidents section in ESET PROTECT. This update lets you leverage AI Advisor directly while investigating incidents without switching to ESET Inspect and sets the stage for future enhancements. Learn more

Improved Incident Graph

We've introduced an enhanced Incident Graph that provides a clear visual representation of each incident. It helps you quickly understand the attack, identify the initial entry point, and see how it evolved over time. Learn more

Quarantined file download for advanced analysis

You can now securely download quarantined files from endpoints via ESET PROTECT, enabling deeper threat analysis and supporting advanced investigation workflows. Learn more

Direct support for MDR customers during active incidents

As an MDR customer, you now have access to 24/7 expert assistance for active security incidents. Support tickets can be opened via ESET Services HUB (accessible through the Product Navigator) in English, with a guaranteed 2-hour SLA response time. Learn more

Quarterly threat intelligence reports for MDR customers

We're offering quarterly threat intelligence reports containing insights on observed attacks, APT group activities, known CVEs, practical security tips, and more. These reports also highlight how MDR services help prevent threats, providing peace of mind and demonstrating the value of proactive protection. Learn more

Zero-incident dashboard

When no active attack is detected, the ESET MDR dashboard now provides meaningful insights instead of an empty view. Starting in February, you'll see baseline data that reflects how our security services process and protect your environment. If an incident occurs, the zero-incident dashboard will automatically switch to the existing incident-focused view. Learn more

Other improvements and bug fixes

Find out what else has been improved in the changelog.

˄˅