McAfee – Endpoint Security 10.6.1 and 10.7.0 April Monthly Update
This update includes fixes and resolutions for several issues, as well as cumulative fixes from the previous monthly updates. Also included in Adaptive Threat Protection with this release is Credential Theft Protection, which uses Real Protect scanning to provide targeted protection against credential dumping attack techniques. Please note that this release has a rating of mandatory due to the resolution of Security-related items.
If Endpoint Security 10.7 April Update is installed on unpatched Microsoft Windows 7 or Server 2008 R2 for Microsoft KB4474419 then a notification prompt appears notifying that the installation is not SHA1 signed.
This will occur regardless of installation method used. This is because Microsoft has fully deprecated SHA1 signing in their switch from dual signing with SHA1/SHA2 to SHA2 only.
This does not affect Endpoint Security 10.7 April Update’s ability to successfully install. The pop-up will not be experienced on Windows 7 SP1or Server 2008 R2 SP1 and above. In order to avoid this scenario, McAfee recommends that you apply the necessary Windows patches.