Skip to main content
Skip table of contents

Release Notes October 2023

Release Date: 2023-10-31

Version:  8.20.1.1.el7



Upcoming update for Netsec users

It has likely not escaped anyone's notice that things have been a little quiet on the Netsec side. But we have been working exceptionally hard behind the scenes to introduce the Netsec capabilities into the Portal, the UI currently used for our Appsec products.

Over the coming months more capabilities will be added and we are beginning the onboarding process for customers to move over to the Portal UI. The transition will be gradual, and customers will be moved individually when all of the capabilities they require have been implemented to the Portal UI.

We are also making the whole Vulnerability Management process more streamlined with less 'clicks' required. There will be some changes in terminology and workflow, but its far simpler to manage and a greatly improved user experience. New features are introduced along the way, such as Tags, along with the necessary Tag Manager, support for Webhooks, and much more.

For those of you already using Portal, you may have seen some of the great steps forward in terms of user experience, and there are a lot more exciting new updates and capabilities coming.


Important notice

As our business grows, and with more customers joining us, it has been necessary to grow our infrastructure accordingly to ensure we can continue to offer an ever-improving level of service to our customers.

To meet these needs, it has been necessary to extend the IP range from which scanning may originate.

The additional IPv6 range from which scans may originate is:

2a13:5240::/29

This is in addition to our existing network range of:

IPv4: 91.216.32.0/24
Ipv4: 80.254.228.0/22

IPv6: 2001:67c:1084::/48

These IP ranges are exclusive to Outpost24, and any IPS whitelisting for PCI ASV scans should include these new ranges.


New Features

Portal

  • New column that combines score from both CVSS v2 and CVSS v3. V3 will have priority, but whenever that is not available, we will show v2. It is now shown by default to every user, although previous CVSS-specific columns are still available.
  • Cloud discovery assets with AWS configuration now show info on both Region and Account in the detail of the asset, as shown below:
  • Users can now create subusers and trigger password resets from the IAM view.

CORE

  • The new Trends Views allow customers to see the evolution of their exposure scoring over time. There are several graphs by AppStak and Business Criticality for example.

Bug Fixes and Minor Improvements

Netsec

  • Up until this release, vulnerability reports only showed assets based on their IP addresses but since this release we have included the hostname in the report as well.
  • Reestablished the feature to request a password recovery through a HIAB console, where before sometimes it would get stuck.

Appsec

  • Attachments from findings are now downloadable again.
  • In order to keep a history of the actions performed in an action, all transactions now trigger a default comment with the following format:

    Transitioned finding status from <x> to <y> without user's comment.
  • As part of some reports rework, we have added Recreation Flows, Impact and Attachments to the exported report.

Portal

  • Filtering functionality in managed reports was restored.

OUTSCAN

  • Fixed corrupted Japanese characters in some reports.

Vulnerability Detection Update

The latest updates are published here Vulnerability Detection Update.

End of Life Announcement

Scanning over SSH1

We will no longer be supporting scanning over SSHv1 from March 2024, and will therefore drop support for this and all of the associated ciphers.

  • Official End of Life date: September 2023
  • Official End of Support date: March 2024

SWAT Classic

We are announcing the End of Life of the SWAT Classic UI. Due to feedback from customers we have extended the end of Support date for the SWAT Classic UI to the end March 2023.

  • Official End of Life date: March 2022
  • Official End of Support date: July 2023





Copyright

© 2024 Outpost24® All rights reserved. This document may only be redistributed unedited and unaltered. This document may be cited and referenced only if clearly crediting Outpost24® and this document as the source. Any other reproduction and redistribution in print or electronically is strictly prohibited without explicit permission.

Trademark

Outpost24® and OUTSCAN™ are trademarks of Outpost24® and its affiliated companies. All other brand names, product names or trademarks belong to their respective owners.


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.