2021 Releases

Intelligence - 13:00 UTC

Type: Bug Fix
Description:  Table in INTELLIGENCE tab under Assets\Environments now support AWS environments onboarded through Custom Onboarding
Known limitations: N/A 
Affected Components: INTELLIGENCE

GenericList API - 09:20 UTC

Type: New Managed Lists
Description:  Added new Managed List for AccountIds by plarform
Known limitations: N/A 
Case ID: DFR-963
Affected Components: GENERIC LIST API COMPLIANCE ENGINE

Compliance Rulesets Update - 12:23 UTC

Type: Bug Fix
Description: Fixed email attached links to CloudGuard for Infinity Portal users.
Case ID: DFT-1678
Known limitations: N/A 
Affected Components: email notifications Infinity portal

Compliance Rulesets Update - 12:20 UTC

Type: Improvement
Description: New AWS and GCP rules. A complete list can be found here.
Case ID: DFT-1614
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Compliance Webhook API- 09:20 UTC

Type: Improvement
Description:  Improvements the Webhook integration API
Known limitations: N/A 
Affected Components: COMPLIANCE WEBHOOK API

API- 05:30 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

AWS Permissions Management - 15:00 UTC

Type: Improvement
Description: Infrastructure change for AWS missing permissions management.
Known limitations: N/A 
Affected Components: API DATA FETCHERS aws COMPLIANCE ENGINE

Intelligence - 09:15 UTC

Type: Internal Release
Description: Internal release in preparation for upcoming CIEM feature.
Known limitations: N/A 
Affected Components: CIEM INTELLIGENCE

Intelligence - 09:15 UTC

Type: Internal Release
Description: Internal release in preparation for upcoming support of GCP Account Activity in Intelligence
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 09:15 UTC

Type: Bug Fix
Description: Fixed error messages display in Intelligence
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 09:15 UTC

Type: Bug Fix
Description: Fixed bug when number of events was calculated before all logs were loaded in Intelligence Account Activity and Network Traffic log tables.
Known limitations: N/A 
Affected Components: INTELLIGENCE

Gcp API - 08:30 UTC

Type: Bug fix
Description: Fix logic relevant to the GcpProject API.
Known limitations: N/A 
Affected Components: API

AWS EMR Cluster - 08:30 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS aws

Billing Report - 12:00 UTC

Type: Improvement
Description: Billing report - improved export file view. Reports for Azure accounts would be displayed by Resource group.
Case ID: DFT-2119
Known limitations: N/A 
Affected Components: API

Intelligence Rulesets Update - 15:20 UTC

Type: Improvement
Description: Rules fixes, adding new rulesets.
Case ID: N/A
Known limitations: N/A 
Affected Components: Intelligence RULESETS

Compliance API- 13:40 UTC

Type: Improvement
Description: new API - AssessmentHistoryV2/LastAssessmentResults/minimized - for getting last assessment with minimized entities
Known limitations: N/A 
Case ID: DFR-2145
Affected Components: COMPLIANCE API

API- 12:30 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

Compliance Webhook Integration- 11:15 UTC

Type: Improvement
Description: internal improvement in the compliance Webhook integration
Known limitations: N/A 
Affected Components: COMPLIANCE WEBHOOK INTEGRATION

API- 10:15 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

AWS Inspector - 10:00 UTC

Type: Improvement
Description: Updated regions for data fetching:

• Added data fetching from “eu-west-2“ and “us-gov-west-1“.

• Removed data fetching from “cn-north-1“ and “cn-northwest-1“.

Known limitations: N/A 
Affected Components: DATA FETCHERS aws

API- 09:15 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

API- 08:30 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

Compliance Rulesets Update - 12:10 UTC

Type: Improvement
Description: New GCP and CFT rules. A complete list can be found here.
Case ID: DFT-1665
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

AWS EMR Cluster - 08:15 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS aws

Intelligence - 17:00 UTC
Type: Improvement
Description: The new Azure Network Traffic onboarding via ARM will only create one Storage Account per region instead of one per NSG in case the NSG flow logs are not yet archived to a Storage Account.
Known limitations: N/A
Affected Components:  INTELLIGENCE AZURE

Intelligence - 17:00 UTC
Type: Improvement
Description: Added pre-requisites of NSG flow logs in Version 2 in Azure Network Traffic onboarding.
Known limitations: N/A
Affected Components:  INTELLIGENCE AZURE

Intelligence - 17:00 UTC

Type: Bug Fix
Description:  Fixed error in instructions for Azure Account Activity onboarding
Known limitations: N/A 
Affected Components: INTELLIGENCE AZURE

Intelligence - 17:00 UTC
Type: Improvement
Description: Added support for several possible configurations of NSGs and Storage Account in Azure Network Traffic onboarding.
Known limitations: N/A
Affected Components:  INTELLIGENCE AZURE

Compliance Engine - 13:30 UTC

Type: Improvement
Description:  Added support for double quotes when using getResource method in GSL.
Known limitations: N/A 
Affected Components: COMPLIANCE ENGINE

Several Data Fetchers - 13:30 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:  DATA FETCHERS aws DATA FETCHERS azure DATA FETCHERS gcp DATA FETCHERS alibaba

Intelligence - 11:15 UTC

Type: Bug Fix
Description:  Fixed a bug when the logs screen was stuck when an error was returned by the back-end API.
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 11:15 UTC

Type: Bug Fix
Description:  Fixed the date column in network traffic logs to show local time
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 11:15 UTC

Type: Bug Fix
Description:  Fixed a bug where number of items was not shown in log tables.
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 11:15 UTC

Type: Bug Fix
Description:  Fixed a bug regarding the timeline in the activity and traffic explorers when there is a big amount of data.
Known limitations: N/A
Affected Components: INTELLIGENCE

Compliance API- 13:30 UTC

Type: Bug Fix
Description:  Fix Posture finding clearance on Policy deletion.
Known limitations: N/A 
Case ID: DFT-1439
Affected Components: COMPLIANCE ENGINE API

Billing Report - 10:30 UTC

Type: Improvement
Description:  Add normalized column to the exported file.
Known limitations: N/A 
Affected Components: API

Compliance Engine- 10:00 UTC

Type: Improvement
Description:  Internal improvements.
Known limitations: N/A
Affected Components: COMPLIANCE ENGINE

Compliance API- 13:30 UTC

Type: Bug Fix
Description:  Fix Posture finding clearance on Policy deletion.
Known limitations: N/A 
Case ID: DFT-1439
Affected Components: COMPLIANCE ENGINE API

Billing Report - 10:30 UTC

Type: Improvement
Description:  Add normalized column to the exported file.
Known limitations: N/A 
Affected Components: API

Compliance Engine- 10:00 UTC

Type: Improvement
Description:  Internal improvements.
Known limitations: N/A
Affected Components: COMPLIANCE ENGINE

Intelligence - 16:30 UTC

Type: Improvement
Description:  Internal deployment
Known limitations: N\A
Affected Components:  INTELLIGENCE 

GCP Log Based Metric - 14:15 UTC

Type: New Entity
Description:  Added support for GCP Log Based Metric in the compliance engine and protected assets.
Known limitations: N\A
Affected Components:  DATA FETCHERS GCP Compliance Engine PROTECTED ASSETS

GCP Alert Policy - 14:15 UTC

Type: New Entity
Description:  Added support for GCP Alert Policy in the compliance engine and protected assets.
Known limitations: N\A
Affected Components:  DATA FETCHERS GCP Compliance Engine PROTECTED ASSETS

Several Data Fetchers - 14:15 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:  DATA FETCHERS aws DATA FETCHERS azure DATA FETCHERS gcp DATA FETCHERS alibaba

Azure Databricks Workspace - 14:15 UTC

Type: New Entity
Case ID: DFR-2127
Description:  Added support for Azure Databricks Workspace in the compliance engine.
Known limitations: N\A
Affected Components:  DATA FETCHERS AZURE Compliance Engine

Azure SQL DB and Azure Data Warehouse - 14:15 UTC

Type: Improvement
Description: Added property ‘resourceGroup’ in Azure SQL DB and in Azure Data Warehouse model in compliance and protected assets.
Known limitations: N/A 
Affected Components: Compliance Engine PROTECTED ASSETS

AWS Network Interface - 14:15 UTC

Type: Bug Fix
Description: Fix missing subnetId property in AWS Network Interface model in compliance and protected assets.
Case ID: DFT-1601
Known limitations: N/A 
Affected Components: Compliance Engine PROTECTED ASSETS

Compliance Rulesets Update - 13:45 UTC

Type: Improvement
Description: The new release of the GCP CIS v1.1, the GCP CIS v1.2 and the AWS MITRE ATT&CK rulesets. New GCP and CFT rules. A complete list can be found here.
Case ID: DFT-1535
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

API- 07:15 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

Protected Assets - 13:00 UTC

Type: Improvement
Description: Internal change for error handling in the protected assets service.
Known limitations: N/A 
Affected Components: PROTECTED ASSETS

AWS Glue Connection - 15:00 UTC

Type: Fix
Description: Remove unsafe password data from protected assets and compliance engine.
Known limitations: N/A 
Affected Components: Compliance Engine PROTECTED ASSETS DATA FETCHERS aws

AWS EMR Cluster - 14:45 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS aws

GCP VM Instance - 12:45 UTC

Type: Fix
Description: Fix missing Firewall inbound\outbound rules in protected assets and compliance engine..
Case ID: DFT-1633
Known limitations: N/A 
Affected Components: Compliance Engine PROTECTED ASSETS

Compliance Rulesets Update - 11:15 UTC

Type: Improvement
Description: The new release of the Azure CIS v1.3.1 ruleset. New AWS, GCP and CFT rules. A complete list can be found here.
Case ID: -
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Billing Report - Export Improvement 15:00 UTC

Type: Improvement
Description:  Billing report export cosmetic improvements.
Case ID: DFT-1638
Known limitations: N/A 
Affected Components: API

Billing Report 13:00 UTC

Type: Bug Fix
Description:  Billing report export improvement.
Case ID: N/A 
Known limitations: N/A 
Affected Components: API

Compliance Notification API- 14:50 UTC

Type: Bug Fix
Description:  Fix create Notification with null WebhookPayloadFormat
Case ID: DFT-1638
Known limitations: N/A 
Affected Components: Compliance NOTIFICATION API

Compliance - 14:30 UTC

Type: Improvement
Description:  Internal Compliance pipeline improvement
Known limitations: N/A 
Affected Components: Compliance

Compliance API- 09:30 UTC

Type: Improvement
Description:  Change AssessmentHistoryV2/csv/{assessmentResultId} API on GCP Assessment to return ProjectNumber instead of ProjectId
Case ID: DFT-1378
Known limitations: N/A 
Affected Components: Compliance API

API- 07:30 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

Dashboard - Refactor Kubernetes Image Assurance Policy APIs15:00 UTC
Type: Improvement
Description:

• Released new APIs for ImageAssurance Policy that use a clearer and more organized flow. Relevant APIs

  • KubernetsImageAssurancePolicy

  • ContainerRegistryImageAssurancePolicy (Container Registry is still in EA)

Known limitations: N/A
Affected Components:  Kubernetes Container registry scanning

Dashboard - 13:00 UTC
Type: Bug Fix
Description: Trying to create a widget dashboard of type “Trend Change Summary” or “Trend Line With Change Summary” did not work.
Known limitations: N/A
Affected Components:  Dashboard

Compliance Engine - 10:00 UTC
Type: Improvement
Description: Internal change in the external findings mechanism to improve performance in the compliance engine.
Known limitations: N/A
Affected Components:  Compliance Engine

Cloud Instance API - 10:00 UTC
Type: Improvement
Description: CloudInstance API performance improvement.
Known limitations: N/A
Affected Components:  API

Intelligence - 10:15 UTC
Type: Bug Fix
Description: Fixed an issue with the way Intelligence rules were presented in the CloudGuard Portal
Known limitations: N/A
Affected Components:  INTELLIGENCE

Intelligence - 10:15 UTC
Type: New Feature
Description: Added ability to group and sort in Account Activity and Network traffic log tables.
Known limitations: N/A
Affected Components:  INTELLIGENCE

Assessment History - Adding entity links to the report - 14:30 UTC

Type: Bug Fix
Description: Adding links to each entity no matter if it passed or fail.
Case ID: DFT-1623, DFT-1588
Known limitations: N/A 
Affected Components: Assessment history

Compliance Rulesets Update - 14:15 UTC

Type: Improvement
Description: New AWS and CFT rules. A complete list can be found here.
Case ID: -
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Compliance API - 12:30 UTC

Type: Bug Fix
Description: Fixed a bug with license activation
Case ID: DFT-1619
Known limitations: N/A 
Affected Components: API

Compliance API - 12:30 UTC

Type: Improvement
Description: Added Cloudbot section to Ruleset API
Known limitations: N/A 
Affected Components: API

Intelligence - 8:15 UTC

Type: Bug Fix
Description: Fixed an issue where a few deprecated rules were still displayed in the portal.
Known limitations: N/A 
Affected Components: INTELLIGENCE

AWS EMR Cluster - 14:30 UTC
Type: Improvement
Description: Internal improvement
Known limitations: N/A
Affected Components:  DATA FETCHERS aws

Clarity & GcpPubSub APIs - 13:45 UTC
Type: Improvement
Description: Internal improvements for the following calls:
Clarity API → google-security-groups & google-networks
GcpPubSub API → topics by cloudAccountId
Known limitations: N/A
Affected Components:  API

Azure Entities - 13:45 UTC
Type: Improvement
Case ID: DFR-2090
Description: Added support for all types of service tags in networkSecurityGroup's inboundRules.source\outboundRules.Destination field in protected assets and compliance engine for the following Azure entities:
SqlServer, RedisCache, StorageAccount, Subnet, NetworkSecurityGroup, LoadBalancer, VirtualMachine, Vnet & NetworkInterface.
Known limitations: N/A
Affected Components:  Compliance Engine PROTECTED ASSETS

Compliance API - 14:00 UTC

Type: Improvement
Description: Improve exclusion mechanism to support faster findings exclusion
Known limitations: N/A 
Affected Components: API

API- 12:00 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

Intelligence - 16:45 UTC
Type: Bug Fix
Description: Fixed a bug where the time range selected was being changed when moving between Activity and Traffic Explorer.
Known limitations: N/A
Affected Components:  INTELLIGENCE

Registration Page - Improved error messages - 13:30 UTC
Type: Improvement
Description: Added human readable error messages to the registration page.
Known limitations: N/A
Affected Components:  UI

Cloud IAM Role API - 12:30 UTC
Type: Improvement
Case ID: DFT-1590
Description: CloudIamRole API performance improvement when passing ‘roleArns’ as parameter.
Known limitations: N/A
Affected Components:  API

Intelligence - 12:30 UTC

Type: Bug Fix
Description: Fixed bug where Intelligence rulesets were not shown in the portal if no account was onboarded to CloudGuard.
Known limitations: N/A
Affected Components: Intelligence 

AWS Inspector - 12:30 UTC

Type: Improvement
Description: Update list of supported regions.
Known limitations: N/A
Affected Components: DATA FETCHERS aws 

AWS EMR Cluster - 11:45 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components: DATA FETCHERS aws 

Compliance Rulesets Update - 11:00 UTC

Type: Improvement
Description: The first release of the Azure ITSG-33 ruleset, rules fixes. A complete list can be found here.
New CloudBots were added. AWS CFT rules were added to the GSL website.
Case ID: DFR-1257
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

AWS API Gateway - 11:45 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components: DATA FETCHERS aws 

Azure Resource Group - 09:45 UTC

Type: Improvement
Description: Show also inherited locks (from subscription) for a resource group in protected assets and compliance engine.
Case ID: DFT-1456
Known limitations: N/A 
Affected Components: Compliance Engine PROTECTED ASSETS

GCP API Key - 09:45 UTC

Type: New Entities
Description: Added support for GCP API Key in protected assets and compliance engine.
Known limitations: N/A
Affected Components:    Compliance Engine  DATA FETCHERS GCP PROTECTED ASSETS

CloudRoute53HostedZone & CloudRoute53RecordSetGroup API - 08:30 UTC

Type: Improvement
Description: Added new APIs for AWS Route53 Hosted Zones & AWS Route53 Record Set Groups.
Case ID: DFR-2123
Known limitations: N/A 
Affected Components: API

Cloud IAM Policy API - 13:00 UTC
Type: Improvement
Case ID: DFT-1590
Description: CloudIamPolicy API performance improvement when passing ‘roleArns’ as parameter.
Known limitations: N/A
Affected Components:  API

Intelligence - 11:30 UTC
Type: Bug Fix
Description: Fixed issue in GSL with NOT operator
Known limitations: N/A
Affected Components:  INTELLIGENCE GSL

New agents and Helm chart - 2.8.0 released - 12:00 UTC
Type: New Feature
Description:

• New Image Assurance agent, version 2.0.0: Add support for ACR scanning.

• New Admission Control Policy agent version 1.0.1, Enforcer agent version1.2.2: Collect data on historical API calls for improved verification (validate Admission Control rules based on operation history).

• Address Helm install warnings by removing deprecated Kubernetes objects.

Known limitations: N/A 
Affected Components:  Kubernetes Helm

Intelligence - 17:30 UTC
Type: Improvement
Description: Internal improvements

Known limitations: N/A
Affected Components:  INTELLIGENCE

Compliance API - 17:30 UTC
Type: Improvement
Description: Improve IAC Assessments result

Known limitations: N/A
Affected Components:  API

Enrichment Engine - 15:00 UTC
Type: Bux Fix
Description: Fixed issue with Security Group enrichment

Known limitations: N/A
Affected Components:  INTELLIGENCE

New Early Availability Helm chart released - 2.8.0: ACR scan support, Admission Control assessment history, improvements for k8s 1.19+ - 13:30 UTC
Type: New Feature
Description:

• Image Assurance 2.0.0: add ACR scan support

• Admission Control policy 1.0.1, Admission Control enforcer 1.2.2: collect data for improved verification

• Remove deprecated objects referenced to remove warnings during deployment.

Known limitations: N/A
Affected Components:  Kubernetes Helm

Block misconfigured Kubernetes environments - clusters that are onboarded multiple times using the same ClusterID - 13:30 UTC
Type: New Feature
Description:

• A detection mechanism for Kubernetes clusters on-boarding misconfiguration is added

• The mechanism detects cases of multiple clusters accidentally onboarded with the same clusterID

• Detection of such an event is presented in Audit Logs and the cluster's status indications

Known limitations: N/A
Affected Components:  Kubernetes

Added ShiftLeft Image entities - 13:00 UTC
Type: New Feature
Description: ShiftLeftImage entities were added to the Protected Assets page and to the API /api/kubernetes/imageAssurance/image/general

Known limitations: N/A
Affected Components:  Kubernetes ShiftLeft Image Assurance

New Admission Control use case to address CVE-2021-25742: Ingress-nginx custom snippets allows retrieval of secrets - 12:30 UTC
Type: Enhancement
Description: A security issue was discovered in ingress-nginx (CVE-2021-25742) where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.

Added 2 Use-cases:

1. Ingress should not use unsafe annotations

   1. This rule can prevent the exploitation of CVE-2021-25742

2. Ingress Nginx ConfigMap should not use allow-snippet-annotations

   1. This rule can prevent changing the Nginx configuration to be vulnerable to CVE-2021-25742

Known limitations: N/A
Affected Components:  Kubernetes Admission Control

Improved Workload Protection Audit logs - 12:00 UTC
Type: Enhancement
Description:

• New audit logs for Runtime Protection configuration changes

• New audit logs when enabling/disabling features

• Admission Control audit title “Admission Control Event” changed to “Kubernetes Admission Control”
  Known limitations: N/A
  Affected Components:  Kubernetes Runtime protection Admission Control

Add support for parent process in Runtime Protection rules and exclusions - 11:30 UTC
Type: New Feature
Description: When creating rules and exclusions for Runtime Protection profiles, the users can now set a parent process. This information is also shown in the rules and exclusions tables as well.
Known limitations: N/A
Affected Components:  Kubernetes Runtime protection

Cloud Instance API - 11:00 UTC
Type: Bug Fix
Case ID: DFT-1589
Description: Cloud Instance API bug fix for EC2 classic.
Known limitations: N/A
Affected Components:  API

API- 09:00 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

All Data Fetchers - 14:00 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:  DATA FETCHERS aws DATA FETCHERS azure DATA FETCHERS gcp DATA FETCHERS alibaba

Compliance Rulesets Update - 11:00 UTC

Type: Improvement

Description: The first release of the AWS CIS Foundations v. 1.4.0 ruleset, adding new rules to the AWS CIS Foundations v. 1.3 rulesets, adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here.

New CloudBots were added

Case ID: DFT-1582, DFR-2045

Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

GCP GSuite User - 09:30 UTC
Type: Improvement
Description: Added support for new field Languages to GCP GSuite User on protected assets and compliance engine.
Known limitations: N/A 
Affected Components: Compliance Engine DATA FETCHERS GCP PROTECTED ASSETS

Compliance - 11:30 UTC

Type: Improvement
Description:  General improvements. 
Known limitations: N/A 
Affected Components: API

AzureManagement, AzureGenericEntity, AzureActivityLog, AzureSqlServer - 09:45 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:  DATA FETCHERS azure

Intelligence - 09:30 UTC
Type: New Feature
Description: Added “Remove Intelligence” button for Azure environments. The button can be found under Assets\Environments, within the specific environment’s page. Clicking on it and confirming will off-board the environment from Intelligence (both Account Activity and Network Traffic).
Known limitations: N/A
Affected Components:  INTELLIGENCe

Intelligence - 09:30 UTC

Type: Bug FiIx
Description:  Unsupported GSL query will now display an error in the UI.
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 09:30 UTC

Type: Improvement
Description:  New grid implementation in Account Activity and Network Traffic log tables (benefits: endless scroll, reorder/resize columns, etc.)
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 18:50 UTC
Type: Improvement
Description: Updated API documentation for Intelligence
Known limitations: N/A
Affected Components:  INTELLIGENCe API DOCUMENTATION

AWS Cloud Trail - Lookup Events - 16:00 UTC
Type: Improvement
Description: Improved data fetcher performance.
Known limitations: N/A
Affected Components:  DATA FETCHERS aWS

Azure Data Fetchers - 11:00 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:  DATA FETCHERS azure

Intelligence - 9:15 UTC
Type: Improvement
Case ID:
Description: Added link to online help in email warning users that Intelligence cannot retrieve their logs from their storage place.
Known limitations: N/A 
Affected Components:  INTELLIGENCE

Intelligence - 9:15 UTC
Type: Improvement
Case ID:
Description: Improvements for move to new infrastructure.
Known limitations: N/A 
Affected Components: INTELLIGENce

Compliance- 18:00 UTC
Type: Bug Fix
Case ID: DFT-1439
Description: Added ability to export large amount of events as CSV
Known limitations: N/A 
Affected Components:  Events compliance

Intelligence - 10:15 UTC
Type: Bug Fix
Case ID:
Description: Fixed a bug in GSL query for “in” function.
Known limitations: N/A 
Affected Components: INTELLIGENce GSL

GCP VM Instance - 18:45 UTC
Type: Improvement
Case ID: DFR-2024
Description: Added multiple properties to GCP VM Instance on protected assets and compliance engine.
Known limitations: N/A 
Affected Components: Compliance Engine DATA FETCHERS GCP PROTECTED ASSETS

AWS Cloud Trail - Lookup Events - 14:00 UTC
Type: Improvement
Description: Improved paging and throttling handling.
Known limitations: N/A
Affected Components:  DATA FETCHERS aWS

AWS Network Firewall - 13:00 UTC
Type: Improvement
Case ID: DFT-1533
Description: Added support for AWS Network Firewall to the following regions: af-south-1, ap-east-1, ap-northeast-1, ap-northeast-2, ap-south-1, ap-southeast-1, ap-southeast-2, cn-north-1, cn-northwest-1, us-gov-east-1, us-gov-west-1, ca-central-1, eu-central-1, eu-north-1, eu-south-1, eu-west-2, eu-west-3, me-south-1, sa-east-1, us-east-2, us-west-1.
Known limitations: Not supporting the following regions: cn-north-1, cn-northwest-1, us-gov-east-1, us-gov-west-1
Affected Components:  DATA FETCHERS aWS

AWS Network Firewall - 13:00 UTC
Type: Improvement
Case ID: DFR-1468
Description: Added 'firewallPolicy' property to AWS Network Firewall on protected assets and compliance engine.
Known limitations: N/A 
Affected Components: Compliance Engine DATA FETCHERS aWS PROTECTED ASSETS

Compliance Rulesets Update - 11:30 UTC

Type: Improvement

Description: Adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here.

Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Compliance - 16:20 UTC

Type: Improvement
Description:  Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components: API

Compliance API - 10:40 UTC

Type: Improvement
Description:  bug fix for events empty value filter
Known limitations: N/A 
Affected Components: API

Azure Activity Log Monitor - 14:30 UTC

Type: Improvement
Description:  Enriched Azure Storage Account information in Azure Activity Log Monitor on protected assets and compliance engine.
Known limitations: N/A 
Affected Components: Compliance Engine  PROTECTED ASSETS

Azure Container Instance -  14:30 UTC

Type: New Entities
Case ID: DFR-1262
Description: Added support for Azure Container Instance in protected assets and compliance engine.
Known limitations: N/A
Affected Components:    Compliance Engine  DATA FETCHERS azure PROTECTED ASSETS

Compliance Rulesets Update - 12:30 UTC

Type: Improvement

Description: Adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here. New CloudBots were added.

Case ID: DFT-1069
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Azure Storage Blob Containers - 10:00 UTC

Type: Improvement
Description: Internal data fetcher logic improvement.
Known limitations: N/A 
Affected Components:  DATA FETCHERS AZURE

Intelligence - 13:30 UTC

Type: Improvement
Description: We improved both quality and accuracy of geolocation data for account activity and network traffic logs.
Known limitations: N/A 
Affected Components:  INTELLIGENCE

API - 22:45 UTC

Type: Improvement
Description: Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components:  API

Compliance - 12:20 UTC

Type: Improvement
Description: Improvements for a new infrastructure. 
Known limitations: N/A 
Affected Components:  API COMPLIANCE CORE COMPLIANCE INTEGRATIONS

AWS Security Groups - 12:20 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented Security Groups to be visible in the Security Groups page. 
Known limitations: N/A 
Affected Components: DATA FETCHERS AWS

SNS Notification for China- 11:40 UTC

Type: Bug Fix
Description: Adding support to China accounts to send compliance SNS notification. 
Case ID: DFR-2091
Known limitations: N/A 
Affected Components: compliance integrations

Billable Report Api - 08:40 UTC

Type: New Feature
Description: Added API to get a monthly billing report. 
Case ID: DFR-1849
Known limitations: N/A 
Affected Components: API

GCP Firewall Rules - 08:00 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented data updates. 
Case ID: DFR-2098
Known limitations: N/A 
Affected Components: DATA FETCHERS GCP

Compliance Rulesets Update - 11:40 UTC

Type: Improvement

Description: Rules fixes. A complete list can be found here. 

Case ID: DFT-1223, DFT-1519, DFR-2086, DFT-1320, DFT-1428
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Intelligence - 09:00 UTC

Type: Improvement

Description: Internal improvements for data administration and performances.
Known limitations: N/A 
Affected Components: INTELLIGENCE

Intelligence - 11:00 UTC

Type: Improvement
Description: An email is automatically sent to CloudGuard users when Intelligence cannot retrieve logs from their storage place (support for additional use cases was added).
Known limitations: N/A 
Affected Components: INTELLIGENCE

Compliance - 08:30 UTC

Type: Improvement
Description: Improvement
Known limitations: N/A 
Affected Components: API

Authentication - Reset password fix - 07:00 UTC

Type: Bug Fix
Description:  Fixed an issue that affected reset password flow in specific edge cases.
Case ID: DFT-1551
Known limitations: N/A 
Affected Components: API 

Intelligence - 12:00 UTC

Type: Improvement
Description: Network Traffic Logs - New columns available in csv export
When exporting network traffic logs from the portal, the csv now contains new columns: Src Address (IP address of the source), Src Type (External, Lambda…), Src Name (will be empty if the entity is not known by Cloudguard), Dst Address (IP address of the destination), Dst Type and Dst Name.
Known limitations: N/A 
Affected Components: INTELLLIGENCE NETWORK TRAFFIC

Compliance - 14:30 UTC

Type: Improvement
Description: Image Assurance - Reduce the delay between consecutive image scans.
Instead of a single image every 5 minutes, requests for image scans will now be sent from the backend to the scanning agent in batches.
Known limitations: N/A 
Affected Components: Kubernetes Image Assurance

Compliance - 12:30 UTC

Type: New Feature
Description: Admission Control GSL rule verification has been improved. Clicking on the verify button will test the rule based on the cluster's recent API calls history.
Users can now see if the rule violated any of the last 1000 events or the last 7 days of events (the smaller of the two).
Known limitations: N/A 
Affected Components: Kubernetes Admission Control

Compliance - 12:30 UTC

Type: New Feature
Description: The Runtime Protection feature creates Behavioral profiles for workloads. When creating rules and exclusions for profiles, the users can now set a parent process, this information is also shown in the rules and exclusions table as well.
Known limitations: N/A 
Affected Components: Kubernetes Runtime protection

GCP GSuite User & GCP GSuite Group - 17:00 UTC

Type: Bug Fix
Description:  Support pagination 
Case ID: DFT-1423
Known limitations: N/A 
Affected Components: DATA FETCHERS GCP 

GCP Service Account - 14:00 UTC

Type: Bug Fix
Description:  Support pagination 
Case ID: DFT-1555
Known limitations: N/A 
Affected Components: DATA FETCHERS GCP 

AWS IAM SAML & AWS IAM Open ID -  10:30 UTC

Type: New Entities
Case ID: DFR-1299
Description: Added support for AWS IAM SAML & AWS IAM Open ID in protected assets and compliance engine.
Known limitations: N/A
Affected Components:    Compliance Engine  DATA FETCHERS AWS PROTECTED ASSETS

Compliance Rulesets Update - 13:15 UTC

Type: Improvement

Description: The first release of Azure HITRUST v9.5.0 and Source Code Assurance 1.0 rulesets, adding new rules for the Azure platform, fixing Azure and GCP rules. A complete list can be found here. Adding new CloudBots for AWS and Azure platforms.

Case ID: DFR-1913
Known limitations: N/A 
Affected Components: COMPLIANCE RULESETS

Compliance - 12:30 UTC

Type: Bug Fix
Case ID : DFT-1499
Description: Fixing a bug with AWS SSO authentication
Known limitations: N/A 
Affected Components: authentication

Compliance - 15:00 UTC

Type: Bug Fix
Description: Fixing a bug with large email reports.
Known limitations: N/A 
Affected Components: reports compliance Notifications

Intelligence - 17:00 UTC

Type: Improvement
Description: Internal Improvements.
Known limitations: N/A 
Affected Components: ADMINO INTERCOM

Compliance Engine - 16:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: compliance ENGINE

Compliance Engine - 15:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: compliance ENGINE

Compliance API - 11:30 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: compliance API

Posture Findings Exclusions  - 10:00 UTC

Type: Bug Fix
Case ID: DFT-1354
Description: Run Assessment when adding a new posture findings exclusion.
Known limitations: N/A 
Affected Components: COMPLIANCE ENGINE

Fetchers Improvement - 16:00 UTC

Type: Improvement
Description: Internal Configuration Improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS AWS DATA FETCHERS AZURE DATA FETCHERS GCP DATA FETCHERS ALI

AWS S3 Bucket - 12:00 UTC

Type: Bug Fix
Case ID: DFT-1503
Description: Fix ‘objectLevelLogging’ property
Known limitations: N/A 
Affected Components: COMPLIANCE ENGINE

Fetchers Improvement - 14:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS AWS

Fetchers Permissions Handling Improvement - 09:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS Alibaba DATA FETCHERS Azure DATA FETCHERS gcp

API Improvement - 15:30 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: API

Fetchers Improvement - 09:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS AZURE

Compliance API - 07:00 UTC

Type: Improvement

Description: Internal Improvement Webhook integration.
Known limitations: N/A 
Affected Components: compliance API

Compliance API - 07:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: compliance API

Intelligence - 18:00 UTC

Type: Improvement
Description: Onboarding Azure network traffic logs (a.k.a Azure flow logs) is now done using a custom ARM template. After assigning an additional IAM role to the CloudGuard application and selecting the Network Security Groups to onboard, the system will generate an ARM template for the customer to deploy. The template will handle the requirements for onboarding to Intelligence. This new onboarding replaces the previous onboarding for Azure network traffic logs. It is available to all customers.
Known limitations: N/A 
Affected Components: API INTELLIGENCE ONBOARDING

AWS SNS Platform Application, AWS Events Rule, AWS System Manager Parameter, AWS Kinesis Firehose, AWS Custom Domain Name - 16:00 UTC

Type: Bug Fix
Description:  Support pagination 
Known limitations: N/A 
Affected Components: DATA FETCHERS AWS 

Fetchers Improvement - 16:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: DATA FETCHERS GCP

Compliance API - 18:00 UTC

Type: Improvement
Description: Internal Improvement Webhook integration.
Known limitations: N/A 
Affected Components: compliance API

Compliance API - 17:00 UTC

Type: Improvement
Description: Internal Improvement adding a TTL.
Known limitations: N/A 
Affected Components: compliance API

Compliance API - 15:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: compliance API

Continuous posture - 15:00 UTC

Type: Bug Fix
Description: Fix a bug on ruleset save operation.
Known limitations: N/A 
Affected Components: ui  API

Compliance API - 05:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A 
Affected Components: compliance API