BullWall Ransomware Containment contains excluded file paths, such as $recycle.bin that are not monitored. An attacker with file write permissions could bypass detection by renaming a directory. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 were confirmed to be affected; other versions before and after may also be affected.
The product protects a primary channel, but it does not use the same level of protection for an alternate channel.