###Feature
- Detection of a newly reported KeRanger Mac ransomeware variant.
- Better detection of stalled FileVault Encryption attempts
###Changes
- Minor bug fixes and clarification for Carbon Copy Cloner, SMART and internal IP address plugins.
This build will track dormant copies of the KeRanger. Learn more about this new threat in a post by Palo Alto Networks.
https://www.watchmanmonitoring.com/mac-client-6-4-6-ransomware-failed-filevault-encryptions/