Versions Compared

Old Version 5

changes.mady.by.user Guy Shteinberg

Saved on

compared with

New Version 6

changes.mady.by.user Guy Shteinberg

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Expand
titleDeployment November 17th, 2021
Info

All Data Fetchers - 14:00 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components

Status
titleDATA FETCHERS aws
Status
titleDATA FETCHERS azure
Status
titleDATA FETCHERS gcp
Status
titleDATA FETCHERS alibaba

Info

Compliance Rulesets Update - 11:00 UTC

Type: Improvement

Description: The first release of the AWS CIS Foundations v. 1.4.0 ruleset, adding new rules to the AWS CIS Foundations v. 1.3 rulesets, adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here.

New CloudBots were added

Case ID: DFT-1582, DFR-2045

Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE RULESETS

Info

GCP GSuite User - 09:30 UTC
Type: Improvement
Description: Added support for new field Languages to GCP GSuite User on protected assets and compliance engine.
Known limitations: N/A 
Affected Components

Status
titleCompliance Engine
Status
titleDATA FETCHERS GCP
Status
titlePROTECTED ASSETS

Expand
titleDeployment November 16th, 2021
Info

Compliance - 11:30 UTC

Type: Improvement
Description:  General improvements. 
Known limitations: N/A 
Affected Components

Status
titleAPI

Info

AzureManagement, AzureGenericEntity, AzureActivityLog, AzureSqlServer - 09:45 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components

Status
titleDATA FETCHERS azure

Info

Intelligence - 09:30 UTC
Type: New Feature
Description: Added “Remove Intelligence” button for Azure environments. The button can be found under Assets\Environments, within the specific environment’s page. Clicking on it and confirming will off-board the environment from Intelligence (both Account Activity and Network Traffic).
Known limitations: N/A
Affected Components

Status
titleINTELLIGENCe

Info

Intelligence - 09:30 UTC

Type: Bug FiIx
Description:  Unsupported GSL query will now display an error in the UI.
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENCE

Info

Intelligence - 09:30 UTC

Type: Improvement
Description:  New grid implementation in Account Activity and Network Traffic log tables (benefits: endless scroll, reorder/resize columns, etc.)
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENCE

Expand
titleDeployment November 14th, 2021
Info

Intelligence - 18:50 UTC
Type: Improvement
Description: Updated API documentation for Intelligence
Known limitations: N/A
Affected Components

Status
titleINTELLIGENCe
Status
titleAPI DOCUMENTATION

Info

AWS Cloud Trail - Lookup Events - 16:00 UTC
Type: Improvement
Description: Improved data fetcher performance.
Known limitations: N/A
Affected Components

Status
titleDATA FETCHERS aWS

Info

Azure Data Fetchers - 11:00 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components

Status
titleDATA FETCHERS azure

Info

Intelligence - 9:15 UTC
Type: Improvement
Case ID:
Description: Added link to online help in email warning users that Intelligence cannot retrieve their logs from their storage place.
Known limitations: N/A 
Affected Components:  

Status
titleINTELLIGENCE

Info

Intelligence - 9:15 UTC
Type: Improvement
Case ID:
Description: Improvements for move to new infrastructure.
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENce

Expand
titleDeployment November 11th, 2021
Info

Compliance- 18:00 UTC
Type: Bug Fix
Case ID: DFT-1439
Description: Added ability to export large amount of events as CSV
Known limitations: N/A 
Affected Components:  

Status
titleEvents
Status
titlecompliance

Info

Intelligence - 10:15 UTC
Type: Bug Fix
Case ID:
Description: Fixed a bug in GSL query for “in” function.
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENce
Status
titleGSL

Expand
titleDeployment November 10th, 2021
Info

GCP VM Instance - 18:45 UTC
Type: Improvement
Case ID: DFR-2024
Description: Added multiple properties to GCP VM Instance on protected assets and compliance engine.
Known limitations: N/A 
Affected Components

Status
titleCompliance Engine
Status
titleDATA FETCHERS GCP
Status
titlePROTECTED ASSETS

Info

AWS Cloud Trail - Lookup Events - 14:00 UTC
Type: Improvement
Description: Improved paging and throttling handling.
Known limitations: N/A
Affected Components

Status
titleDATA FETCHERS aWS

Info

AWS Network Firewall - 13:00 UTC
Type: Improvement
Case ID: DFT-1533
Description: Added support for AWS Network Firewall to the following regions: af-south-1, ap-east-1, ap-northeast-1, ap-northeast-2, ap-south-1, ap-southeast-1, ap-southeast-2, cn-north-1, cn-northwest-1, us-gov-east-1, us-gov-west-1, ca-central-1, eu-central-1, eu-north-1, eu-south-1, eu-west-2, eu-west-3, me-south-1, sa-east-1, us-east-2, us-west-1.
Known limitations: Not supporting the following regions: cn-north-1, cn-northwest-1, us-gov-east-1, us-gov-west-1
Affected Components

Status
titleDATA FETCHERS aWS

Info

AWS Network Firewall - 13:00 UTC
Type: Improvement
Case ID: DFR-1468
Description: Added 'firewallPolicy' property to AWS Network Firewall on protected assets and compliance engine.
Known limitations: N/A 
Affected Components

Status
titleCompliance Engine
Status
titleDATA FETCHERS aWS
Status
titlePROTECTED ASSETS

Info

Compliance Rulesets Update - 11:30 UTC

Type: Improvement

Description: Adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here.

Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE RULESETS

Expand
titleDeployment November 4th, 2021
Info

Compliance - 16:20 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components

Status
titleAPI

Info

Compliance API - 10:40 UTC

Type: Improvement
Description:  bug fix for events empty value filter
Known limitations: N/A 
Affected Components

Status
titleAPI

Expand
titleDeployment November 3rd, 2021
Info

Azure Activity Log Monitor - 14:30 UTC

Type: Improvement
Description:  Enriched Azure Storage Account information in Azure Activity Log Monitor on protected assets and compliance engine.
Known limitations: N/A 
Affected Components

Status
titleCompliance Engine
 
Status
titlePROTECTED ASSETS

Info

Azure Container Instance -  14:30 UTC

Type: New Entities
Case ID: DFR-1262
Description: Added support for Azure Container Instance in protected assets and compliance engine.
Known limitations: N/A
Affected Components:    

Status
titleCompliance Engine
  
Status
titleDATA FETCHERS azure
 
Status
titlePROTECTED ASSETS

Info

Compliance Rulesets Update - 12:30 UTC

Type: Improvement

Description: Adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here. New CloudBots were added.

Case ID: DFT-1069
Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE RULESETS

Expand
titleDeployment November 2nd, 2021
Info

Azure Storage Blob Containers - 10:00 UTC

Type: Improvement
Description: Internal data fetcher logic improvement.
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS AZURE

Expand
titleDeployment November 1st, 2021
Info

Intelligence - 13:30 UTC

Type: Improvement
Description: We improved both quality and accuracy of geolocation data for account activity and network traffic logs.
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENCE

Expand
titleDeployment October 31th, 2021
Info

API - 22:45 UTC

Type: Improvement
Description: Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components

Status
titleAPI

Expand
titleDeployment October 28th, 2021

Info

Compliance - 12:20 UTC

Type: Improvement
Description: Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components

Status
titleAPI
Status
titleCOMPLIANCE CORE
Status
titleCOMPLIANCE INTEGRATIONS

Info

AWS Security Groups - 12:20 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented Security Groups to be visible in the Security Groups page. 
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS AWS

Info

SNS Notification for China- 11:40 UTC

Type: Bug Fix
Description: Adding support to China accounts to send compliance SNS notification. 
Case ID: DFR-2091
Known limitations: N/A 
Affected Components

Status
titlecompliance integrations

Info

Billable Report Api - 08:40 UTC

Type: New Feature
Description: Added API to get a monthly billing report. 
Case ID: DFR-1849
Known limitations: N/A 
Affected Components

Status
titleAPI

Info

GCP Firewall Rules - 08:00 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented data updates. 
Case ID: DFR-2098
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS GCP

Expand
titleDeployment October 27th, 2021
Info

Compliance Rulesets Update - 11:40 UTC

Type: Improvement

Description: Rules fixes. A complete list can be found here

Case ID: DFT-1223, DFT-1519, DFR-2086, DFT-1320, DFT-1428
Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE RULESETS

Expand
titleDeployment October 26th, 2021
Info

Intelligence - 09:00 UTC

Type: Improvement

Description: Internal improvements for data administration and performances.
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENCE

Expand
titleDeployment October 25th, 2021
Info

Intelligence - 11:00 UTC

Type: Improvement
Description: An email is automatically sent to CloudGuard users when Intelligence cannot retrieve logs from their storage place (support for additional use cases was added).
Known limitations: N/A 
Affected Components

Status
titleINTELLIGENCE

Info

Compliance - 08:30 UTC

Type: Improvement
Description: Improvement
Known limitations: N/A 
Affected Components

Status
titleAPI

Info

Authentication - Reset password fix - 07:00 UTC

Type: Bug Fix
Description:  Fixed an issue that affected reset password flow in specific edge cases.
Case ID: DFT-1551
Known limitations: N/A 
Affected Components

Status
titleAPI
 

Expand
titleDeployment October 24th, 2021
Info

Intelligence - 12:00 UTC

Type: Improvement
Description: Network Traffic Logs - New columns available in csv export
When exporting network traffic logs from the portal, the csv now contains new columns: Src Address (IP address of the source), Src Type (External, Lambda…), Src Name (will be empty if the entity is not known by Cloudguard), Dst Address (IP address of the destination), Dst Type and Dst Name.
Known limitations: N/A 
Affected Components

Status
titleINTELLLIGENCE NETWORK TRAFFIC

Expand
titleDeployment October 21st, 2021
Info

Compliance - 14:30 UTC

Type: Improvement
Description: Image Assurance - Reduce the delay between consecutive image scans.
Instead of a single image every 5 minutes, requests for image scans will now be sent from the backend to the scanning agent in batches.
Known limitations: N/A 
Affected Components

Status
titleKubernetes Image Assurance

Info

Compliance - 12:30 UTC

Type: New Feature
Description: Admission Control GSL rule verification has been improved. Clicking on the verify button will test the rule based on the cluster's recent API calls history.
Users can now see if the rule violated any of the last 1000 events or the last 7 days of events (the smaller of the two).
Known limitations: N/A 
Affected Components:

Status
titleKubernetes Admission Control

Info

Compliance - 12:30 UTC

Type: New Feature
Description: The Runtime Protection feature creates Behavioral profiles for workloads. When creating rules and exclusions for profiles, the users can now set a parent process, this information is also shown in the rules and exclusions table as well.
Known limitations: N/A 
Affected Components:

Status
titleKubernetes Runtime protection

Expand
titleDeployment October 20th, 2021
Info

GCP GSuite User & GCP GSuite Group - 17:00 UTC

Type: Bug Fix
Description:  Support pagination 
Case ID: DFT-1423
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS GCP
 

Info

GCP Service Account - 14:00 UTC

Type: Bug Fix
Description:  Support pagination 
Case ID: DFT-1555
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS GCP
 

Info

AWS IAM SAML & AWS IAM Open ID -  10:30 UTC

Type: New Entities
Case ID: DFR-1299
Description: Added support for AWS IAM SAML & AWS IAM Open ID in protected assets and compliance engine.
Known limitations: N/A
Affected Components:    

Status
titleCompliance Engine
  
Status
titleDATA FETCHERS AWS
 
Status
titlePROTECTED ASSETS

Info

Compliance Rulesets Update - 13:15 UTC

Type: Improvement

Description: The first release of Azure HITRUST v9.5.0 and Source Code Assurance 1.0 rulesets, adding new rules for the Azure platform, fixing Azure and GCP rules. A complete list can be found here. Adding new CloudBots for AWS and Azure platforms.

Case ID: DFR-1913
Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE RULESETS

Expand
titleDeployment October 19th, 2021
Info

Compliance - 12:30 UTC

Type: Bug Fix
Case ID : DFT-1499
Description: Fixing a bug with AWS SSO authentication
Known limitations: N/A 
Affected Components

Status
titleauthentication

Info

Compliance - 15:00 UTC

Type: Bug Fix
Description: Fixing a bug with large email reports.
Known limitations: N/A 
Affected Components

Status
titlereports
Status
titlecompliance
Status
titleNotifications

Expand
titleDeployment October 17th, 2021

Info

Intelligence - 17:00 UTC

Type: Improvement
Description: Internal Improvements.
Known limitations: N/A 
Affected Components

Status
titleADMINO
Status
titleINTERCOM

Expand
titleDeployment October 14th, 2021

Info

Compliance Engine - 16:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titlecompliance ENGINE

Info

Compliance Engine - 15:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titlecompliance ENGINE

Info

Compliance API - 11:30 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

Info

Posture Findings Exclusions  - 10:00 UTC

Type: Bug Fix
Case ID: DFT-1354
Description: Run Assessment when adding a new posture findings exclusion.
Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE ENGINE

Expand
titleDeployment October 13th, 2021
Info

Fetchers Improvement - 16:00 UTC

Type: Improvement
Description: Internal Configuration Improvement.
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS AWS
Status
titleDATA FETCHERS AZURE
Status
titleDATA FETCHERS GCP
Status
titleDATA FETCHERS ALI

Info

AWS S3 Bucket - 12:00 UTC

Type: Bug Fix
Case ID: DFT-1503
Description: Fix ‘objectLevelLogging’ property
Known limitations: N/A 
Affected Components

Status
titleCOMPLIANCE ENGINE

Expand
titleDeployment October 12th, 2021
Info

Fetchers Improvement - 14:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS AWS

Info

Fetchers Permissions Handling Improvement - 09:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS Alibaba
Status
titleDATA FETCHERS Azure
Status
titleDATA FETCHERS gcp

Expand
titleDeployment October 11th, 2021
Info

API Improvement - 15:30 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titleAPI

Info

Fetchers Improvement - 09:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS AZURE

Info

Compliance API - 07:00 UTC

Type: Improvement

Description: Internal Improvement Webhook integration.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

Info

Compliance API - 07:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

Expand
titleDeployment October 10th, 2021
Info

Intelligence - 18:00 UTC

Type: Improvement
Description: Onboarding Azure network traffic logs (a.k.a Azure flow logs) is now done using a custom ARM template. After assigning an additional IAM role to the CloudGuard application and selecting the Network Security Groups to onboard, the system will generate an ARM template for the customer to deploy. The template will handle the requirements for onboarding to Intelligence. This new onboarding replaces the previous onboarding for Azure network traffic logs. It is available to all customers.
Known limitations: N/A 
Affected Components

Status
titleAPI
Status
titleINTELLIGENCE ONBOARDING

Info

AWS SNS Platform Application, AWS Events Rule, AWS System Manager Parameter, AWS Kinesis Firehose, AWS Custom Domain Name - 16:00 UTC

Type: Bug Fix
Description:  Support pagination 
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS AWS
 

Info

Fetchers Improvement - 16:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titleDATA FETCHERS GCP

Expand
titleDeployment October 7th, 2021

Info

Compliance API - 18:00 UTC

Type: Improvement
Description: Internal Improvement Webhook integration.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

Info

Compliance API - 17:00 UTC

Type: Improvement
Description: Internal Improvement adding a TTL.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

Info

Compliance API - 15:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

Info

Continuous posture - 15:00 UTC

Type: Bug Fix
Description: Fix a bug on ruleset save operation.
Known limitations: N/A 
Affected Components

Status
titleui
  
Status
titleAPI

Info

Compliance API - 05:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components

Status
titlecompliance API

...