Latest (v9)

June 2025 - Console: v9.01.000, Agent: v9.01.000

In this release:

New Console APIs

We've added 3 new Console APIs to manage Proactive Notifications.

• GET API ProactiveNotifications retrieves all existing Proactive Notifications

• POST API ProactiveNotifications creates a new Proactive Notification

• GET API ProactiveNotifications/{subscriptionId} retrieves information about an existing Proactive Notification

Enable EBS Encryption

• When enabled, all new EBS volumes will be created with encryption.

• Enable feature in Configuration > Scan Settings > Enable EBS Encryption

Event Agent Stall Protection

• The application now detects and restarts stalled Event Agents if they are unresponsive

• This process can take around 20-30 minutes for detection and the creation of a backup task

GCP Least Privilege Role Permissions

• We've improved upon 4 GCP role permissions to adhere to the principle of least privilege:

  • CSSStoragePermissions is created for each Protected Project to access the objects for that Project

  • CSSMainStoragePermissions is created to access the CSS Project

  • CloudRunJobsMinimalAccess is created to utlilize Cloud Run Jobs

  • CSSMainSecretPermissions is created to manage secrets

ClamAV Engine Update

• ClamAV engine has been updated to v1.0.9

Various Improvements and Bug Fixes

• Console Settings UI for Terraform deployments have been updated as 'disabled' for the following settings that can only be changed in the module:

  • EventBridge Proactive Notifications

  • System Tags

• SNS Notifications convert non-BMP symbols to the "?" character to avoid delivery errors

• Console-initiated Agent Settings updates now update CFT instead of the task definition manually

• The Terraform module now has inputs for the Console CPU and Memory, refer to the module for all inputs

• Fixed a bug where API Agents would occasionally fail to send notifications to custom EventBridge buses

• Fixed a bug where the /api/scan API fails to resolve private or local IPs

• UI Fixes and Improvements

June 2025 - Console: v9.00.003, Agent: v9.00.003

In this release:

• Fixed a bug affecting API Scanning where scan attempts would return a 500 HTTP response

June 2025 - Console: v9.00.002, Agent: v9.00.002

In this release:

• Fixed a bug affecting Large File Scans

May 2025 - Console: v9.00.001, Agent: v9.00.001

In this release:

• Fixed a bug affecting Smart Scan and Protect Everything

May 2025 - Console: v9.00.000, Agent: v9.00.000

In this release:

Protect Everything

Adds the ability to Protect all storage containers for comprehensive storage coverage

• Added indicator of storage container protection posture

• Protect AWS, Azure, and GCP buckets in one menu

• Offers exclusion lists

• Containers that were already protected will remain protected if Protect Everything is turned off

Server-Side encryption for Two-Bucket System

• Console-created two-bucket systems allow encryption enforcement

Console-Side Upgrade Improvement

• Console requires upgrade to latest minor version before upgrade to latest major version

Vulnerability Patching

• Various vulnerability fixes have been implemented

WorkDocs Support Removed

• AWS is removing support for WorkDocs. We've removed WorkDocs options from the Console

Various Improvements and Bug Fixes

• Object tags now support the following symbols: + - = . _ : /

• Containers now use Rocky Linux instead of CentOS Stream 10

• Agent Config improvements

• Fixed a bug affecting Scan and Skip lists

• Fixed a bug affecting custom EventBridge Buses

• Fixed a bug affecting precreated IAM Roles

• Improved Large File Scan handling

• UI Fixes for the Console Dashboard