Release Notes March 2024

Release Date: 2024-03-26

Version: 8.25.1.1.el7

Upcoming update for Netsec users

It has likely not escaped anyone's notice that things have been a little quiet on the Netsec side. But we have been working exceptionally hard behind the scenes to introduce the Netsec capabilities into the Portal, the UI currently used for our Appsec products.

Over the coming months more capabilities will be added and we are beginning the onboarding process for customers to move over to the Portal UI. The transition will be gradual, and customers will be moved individually when all of the capabilities they require have been implemented to the Portal UI.

We are also making the whole Vulnerability Management process more streamlined with less 'clicks' required. There will be some changes in terminology and workflow, but its far simpler to manage and a greatly improved user experience. New features are introduced along the way, such as Tags, along with the necessary Tag Manager, support for Webhooks, and much more.

For those of you already using Portal, you may have seen some of the great steps forward in terms of user experience, and there are a lot more exciting new updates and capabilities coming.

Important notice

As our business grows, and with more customers joining us, it has been necessary to grow our infrastructure accordingly to ensure we can continue to offer an ever-improving level of service to our customers.

To meet these needs, it has been necessary to extend the IP range from which scanning may originate.

The additional IPv6 range from which scans may originate is:

2a13:5240::/29

This is in addition to our existing network range of:

IPv4: 91.216.32.0/24
Ipv4: 80.254.228.0/22

IPv6: 2001:67c:1084::/48

These IP ranges are exclusive to Outpost24, and any IP whitelisting for PCI ASV scans should include these new ranges.

Deprecation of SWAT Assets and SWAT Findings in Portal

As part of our ongoing efforts to migrate all Appsec functionality to Portal, please note that both SWAT Findings and SWAT Assets will be removed in upcoming releases from Portal. Those sections had been marked as deprecated for a long time now. As disclosed in the EOL Announcements, SWAT Classic will be deprecated as of October 1st, 2024. Customers who are still using Classic should begin the onboarding process.

Bug Fixes and Minor Improvements

Portal

Improved notifications so that, in certain circumstances, when a user triggers an event they will not also receive a notification.
Fixed an issue with date and time filtering Jinja formatting when used in Event Notifications.
Added Asset variables to Cloudsec Compliance event triggers.
Removed a couple of unnecessary event notification triggers which cannot be activated.
Fixed an issue where APPSEC was not listed as a valid source for Assets.
Fixed an issue where, using the context menu to manually change or reset a risk value, would sometimes present an error and not change the risk level.
An event will now be triggered when a tag is removed in the Compliance view for Cloudsec.
Fixed an issue with Scale scans using HIABs, when managed from Outscan, where consistency scans would get stuck in QUEUED and never exceed 0% completion.
Fixed an issue in the new Asset groups dashboard where when pivoting from the Open Findings of an overview card it would not filter out Recommendation findings and thus the list would be incorrect.

PCI

A 'Special Note' must now be submitted when a Payment Page is found

Agents

Updated the Agent data retention policy to 30 days to ensure that, if we have not received a new set of data for 30 days, we will stop reporting on the last set of data we received which can give the impression that we have a recent set of data.

Public Preview Features

Follow the link to read more about our Product Stages.

Workflows

Improvements to the UX for activating steps in the Workflow.
Added the ability to create reports from existing Scheduled Reports.
Enabled Workflows to be run from any HIAB scanner, no matter which types of scans it is configured for, to allow better consistency when scanning.
When selecting Scan Source in Outscan, the local scanner is now called Outscan, instead of Local.

You can find Workflows in Portal, under Configuration and you can access documentation here: Workflows.

Technology Preview Features

Follow the link to read more about our Product Stages.

RBVM in Portal

Improved Asset Identifiers

We have vastly improved the way we gather data around assets and ways to identify them. When an Agent or Authenticated scan takes place we automatically gather a number of asset identifiers to try and assist in uniquely identifying the asset against other 3rd party tools such as a CMDB

Asset Discovery

Improved handling of invalid credentials for discovery of assets in Azure.

Vulnerability Detection Update

The latest updates are published here: Vulnerability Detection Update

End of Life Announcement

Scanning over SSHv1

We will no longer be supporting scanning over SSHv1 from March 2024, and will therefore drop support for this and all of the associated ciphers.

Official End of Life date: September 2023
Official End of Support date: March 2024

SWAT Classic

We are announcing the End of Life of the SWAT Classic UI. Due to feedback from customers we have extended the end of Support date for the SWAT Classic UI to the October 1st, 2024.

Official End of Life date: October 1st, 2024
Official End of Support date: July 2023

_Copyright

_{© 2024 Outpost24® All rights reserved.}_{This document may only be redistributed unedited and unaltered. This document may be cited and referenced only if clearly crediting Outpost24® and this document as the source. Any other reproduction and redistribution in print or electronically is strictly prohibited without explicit permission.}

_Trademark

_{Outpost24® and OUTSCAN™ are trademarks of Outpost24® and its affiliated companies. All other brand names, product names or trademarks belong to their respective owners.}