Latest (v8)
We will cover a running list of new features and releases with the latest always placed at the top.
Last updated
We will cover a running list of new features and releases with the latest always placed at the top.
Last updated
**IMPORTANT**
Please upgrade your Linked Account Roles to v1.13 or later BEFORE upgrading your console/agent to v8.
If you do not upgrade your Linked Account Roles then you could experience problems when using EventBridge. Click here to learn more about Linked Account Updates.
Please also note, you'll also need to upgrade your console/agent to the latest current version you're currently on before you can upgrade to the next major version.
For example, if you are on v6, you'll need to upgrade to the latest version of v6, then upgrade to the latest of v7, then finally upgrade to v8.
If you are deployed using public subnets then you are most likely using our cloudstoragesecapp.com subdomain to connect to your Management Console. The SSL Certificate associated with that domain name was renewed as of v7.08.000. Please upgrade to the latest console version to avoid any SSL browser errors.
In this release:
Azure Updates
Updated Threat Map includes Azure data
Event protection now enabled in the Console for Blob storage
Azure event-based containers now have autoscaling capabilities depending on queue size
Azure event agent settings are now partitioned by accounts
Agent configuration is now stored in the same storage account to reduce infrastructure costs
Added customization for SNS topic policy
Terraform module now includes the ability to append statements to the SNS Topic Policy
IAM Improvements
We've tightened the permissions in the CloudStorageSecRemotePolicy, removing excessive wildcard permissions with more granularity
Various Improvements and Bug Fixes
ClamAV Private Mirror functionality fixed
Fixed a bug where lack of ability to reach CloudTrail Lake endpoint was preventing console login
API agents can now be properly stood up in il-central-1
Azure fixes and improvements
UI fixes and improvements
Event-based scanning fixes
Retro/on-demand scanning fixes
Large file scanning fixes
v8.02.000 Cloud Formation Template
Security Hub Findings fixes
v8.01.001 Cloud Formation Template
In this release:
Malware History Report
For users that want to get a visual understanding of how malware has been found over time, we’ve added a new page in our Console UI to track historic malware findings
We leverage Amazon Bedrock to interpret the malware finding to provide a human-readable summary and description of the malware found
As a result, Amazon Bedrock must be enabled for this feature
You can expand a specific identity and view more information around how often it was found
At this time, this report pulls data from the last 30 days of enabling it and will show information from that point onwards
Data Classification Quarantine
You can now quarantine files found to have PII
Reporting Bucket Secure Transport
We’ve removed HTTP Access to our Console Reporting bucket, which now only accepts HTTPS requests
Azure Improvements
In v8 we introduced Azure Blob Scheduled Scanning. We have a few improvements and fixes for Azure:
Scanning Improvements
Linked Account Fix
Virus Definition Update Fix
Various Improvements and Bug Fixes
Console UI Fixes
Console UI Improvements
Console API Improvements
Proactive Notifications Fix
Proactive Monitor now clean SQS queues left
v8.01.000 Cloud Formation Template
In this release:
Azure Blob Scheduled Scanning
You can now link Azure accounts into your AV console and ingest any Azure blobs you have, allowing you to perform a scheduled retro scan on any pre-existing files stored within your Azure Blobs.
While we currently only support Retro scanning for Azure Blob we will expand to support event-based scanning in an upcoming release in the near future.
Want to get early access to Azure Blob scanning? Contact us and we can assist!
Minimized Permissions
We've updated our CloudFormation template to use customer managed IAM policies vs inline IAM policies. We've done this to ensure we're using the minimum permissions required to deploy our solution.
If you have IAM policies or Service Control Policies that prevent creating customer managed policies, you'll need an exception for this upgrade. You can refer to Managed policies and inline policies for more information.
Threat Map UI Updates
Infection and Classification titles on the right panel were changed to "Malware" and "Sensitive Data".
Legend at the bottom left shows "No Malware or Sensitive Data", " "Malware Found", "Suspicious Files or Sensitive Data Found".
Legend icons view can be toggled by clicking on it.
Regional information drill-down option navigates to Problem Files/Findings page w/ filters applied when clicked on
Bucket Size and Object Count Metrics Fixed
We've improved how we calculate bucket size and object count for each S3 bucket that we ingest on the Bucket Protection page.
Various Improvements and Bug Fixes
EFS Volume Scanning Fixes
EBS Volume Fixes
API Scanning Fixes
TerraForm Module Fixes
v8.00.000 CloudFormation Template
