Monthly Release Notes - May 2024

Beyond Security

beSTORM

Version 13.3.0

May 21, 2024

New Features

• Added the PTPv2 (1588-2008) Client module to support the PTPv2 protocol described in standard IEEE1588-2008.

• Added the PTPv2 (1588-2008) Server module to support the PTPv2 protocol described in standard IEEE1588-2008.

Enhancements

• Updated the ARP Low-level protocol to include the GARP (Gratuitous ARP) and IARP (Inverse ARP) request types.

• Changing the Scale Type parameter for an existing project will now update the Module Browser tree to reflect the new number of combinations.

• Updated the beSTORM User Guide to include fuzz testing guides, EDSA module documentation, and API documentation. This content was initially only available on Fortra's Beyond Security Portal.

• Replaced the embedded beSTORM User Guide PDF with the HTML version to provide a better user experience. The PDF version of the guide is still available for download from Fortra's Beyond Security Portal.

Fixes

• Fixed an issue where trailing blank spaces at the end of a project's name would display the "Failed to load general project settings..." error message.

• Fixed an issue where the RIPv1 module would stop responding after a fuzz testing session started.

• Fixed an issue where the Module Browser pane was not accurately portraying the number of combinations a module can perform. The Module Browser tree and any associated completed reports will now correctly display the number of iterations every node makes.

• Fixed an issue where the estimated time remaining to complete a test, based on the total combinations and average speed, was incorrect.

Back to Top

Boldon James

Knowledge Classifier

Version 1.4

May 1, 2024

Fixes

• Writing to alternate data streams for file paths in long UNC format failed

Notes Classifier

Version 3.9.0

May 31, 2024

New Features

• Notes Classifier now supports the Content Checking rule that is configured in the Classifier Administration Server.

• Added support for 64-bit computers.

Enhancements

• Updated product branding to meet Fortra standards.

Back to Top

Digital Guardian

Agent for Linux

Version: 8.0.0

JUNE 30, 2024

New Features

• Certification for Additional Kernels

  This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v7.4.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v7.4.x_and_later_Ubuntu_Certified_Environments for complete lists of supported RHEL and Ubuntu kernels.

• Added Support for IPv6 Addresses

  IPv6 support for Agent for Linux, versions 8.0 and later. Adds support for these rule properties and component list types:

  • agentIPAddressV6

  • evtRemoteAddressV6

  • ipMaskV6

  • ipAddressV6

  • ipAddress

  • varipaddressV6

  • componentListIpAddress

  • componentListIpAddressV6

  For additional information, refer to Digital Guardian Rule Implementation Guide.

• Create Platform-Specific Installation Packages

  To help reduce the size of Agent installation packages, you can specify which Linux platforms to include in the build package. You can specify whether to include RHEL or Ubuntu or both. You can also specify which versions of either RHEL or Ubuntu to include. For more details, refer to “Creating the Installation File” in Digital Guardian Agent for Linux User’s Guide.

Agent for MacOS

Version: 8.7

May, 2024

New Features

• Apple M3 Chip Support: In this release, DG Agent for macOS 8.7 has been certified to run on Macbooks with Apple M3 chip.

Fixes

• The customer raised an issue where emails were not sending while using a New Outlook add-in and ARC configured as a Certifying Authority for DG Web Inspection Proxy. This issue occurred due to an incorrect Server Certificate generation, leading to communication failure between the Outlook add-in and DG WIP. This issue is now resolved by generating a correct Server Certificate.

• Users encountered latency while typing, leading to temporary freezing of the window for 1-2 seconds and resulting in the loss of keystrokes. This issue has been resolved by fixing the removal of outdated entries in ADE menus. The same solution was implemented to resolve AG-55073. For more information, refer to DigitalGuardian_Agent_for_macOS_8.7_Release_Notes

• Customer reported emails being blocked when using Outlook add-in. This issue is resolved and it also addresses emails getting blocked when sent from shared mailbox.

• The dropdown menu for font selection in Microsoft PowerPoint was experiencing an issue where it would unexpectedly open and close. This issue is resolved now.

• Customer reported an issue wherein large file download was being blocked in Safari. File downloads will now not get blocked in Safari on encountering EPS timeout. Additionally, EPS notifications are now suppressed when the download is successful after an EPS timeout.

• Initially, the Rule Property <agentIPAddress /> failed to trigger on the Mac Agent. This issue has been resolved, and <agentIPAddress> is now being detected correctly.

• When ARC is set up as the Certifying Authority for Web Inspection Proxy, intermittent failures have been observed in connecting to the ARC from the DG Agent. Despite the occasional failure, subsequent retries tend to succeed, and the overall functionality remains unaffected. This issue has been addressed and resolved. Operational alerts will now be sent only when the second retry to ARC fails, reducing operational alert noise.

nDLP Appliance

Version: 12.0

May, 2024

New Features

• DG Appliance now uses Rocky Linux version 8.9 as the underlying Operating System, replacing CentOS version 7.9.

Fixes

• When attempting to access the online help guide version 11.9 via the UI, the window fails to launch and remains blank. This issue has been resolved in this release, and customers can now access the online help guide.

• Customers reported an issue where DG nDLP appliance setup to send discovery events in XML format were not appearing in DGMC/ARC. However, this issue has now been fixed.

Back to Top

Fortra

Fortra platform

May 21, 2024

Enhancements

• When a user has read-only access to a role, there is a new action menu item "View role" that allows the user to see the details of the role.

• Updated privacy policy.

• Added ability to opt of out allowing users outside of organization to manage account.

Endpoint Manager

May 21, 2024

New Features

• Audit events are now sent to Event Fusion Center when configuration is added, modified, or deleted.

Enhancements

• Added the ability to generate and collect verbose installer logs for individual modules and the Fortra Agent itself.

Fixes

• Modules now accurately display by capability and reflect changes to module overrides regardless of agent state.

• Fixed issue with dropdown fields not populating assigned values when editing an existing configured module.

May 7, 2024

Enhancements

• Assignments for a group are now deleted when the group is deleted.

Fixes

• When there are not modules associated with an endpoint, the module count of 0 has been removed.

Back to Top

Globalscape

EFT

v8.2.0.46

May 1, 2024

Fixes

High Availability (HA)

• Fixed an issue where EFT service would fail to start on additional nodes added to a new HA Active-Active cluster configuration

Help Documentation

• Updated several Help topics (typos, clarifications, and so on)

Back to Top

GoAnywhere

GoAnywhere MFT

Version 7.5.2

May 29, 2024

Updates

• Updated unlimited-common from 1.4.69+ to 1.7.12.

• Updated unlimited-transfers from 1.4.129+ to 1.7.15.

• Updated unlimited.fc.client-api from 1.4.120+ to 1.7.56.

• Updated Tomcat from version 9.0.83 to 9.0.87.

• Updated the PostgreSQL JDBC Driver from 42.4.3 to 42.7.3.

Fixes

• Fixed an issue with Trigger Email actions losing formatting in the email body. This issue was introduced in version 7.4.0.

• Fixed an issue where files with no extension could not be transferred with the AS4 Push and Pull tasks.

• Fixed an issue related to Agent Transfers that could corrupt the data structure under heavy load.

• Fixed an issue with the 7.5.0 upgrade of web user preferences to purge all invalid references (where a web user no longer exists) prior to migrating to the new table.

GoAnywhere Agents

Version 2.2.2

May 29, 2024

Updates

• Updated unlimited-common from 1.4.69+ to 1.7.12.

• Updated unlimited-transfers from 1.4.129+ to 1.7.15.

• Updated unlimited.fc.client-api from 1.4.120+ to 1.7.56.

• Updated the PostgreSQL JDBC Driver from 42.4.3 to 42.7.3.

GoAnywhere Gateway

Version 3.1.1

May 06, 2024

• Enhanced the Gateway Docker image to better track the underlying Gateway version.

• Set the Gateway reverse proxy to be enabled by default in the installer.

• Updated Software Identification (SWID) tag for Fortra branding.

• Updated the default installation folder from 'HelpSystems' to 'Fortra'.

• Updated the Gateway User Guide to include a workaround for Gateway not installing the /etc/init.d/gagatewayd command.

• Updated Docker paths to use Fortra.

• Updated Netty from version 4.1.100.Final to 4.1.108.Final.

• Updated bc-fips from version 1.0.2.3 to 1.0.2.4.

• Fixed an issue with whitespace in comma-separated values in the gateway.xml configuration file.

Back to Top

Outflank Security Tooling (OST)

Outflank

24 May 2024

Initial Access

• New tool release: In-Phase Builder (BETA) is a new tool for generating initial access payloads in different formats optimized for OPSEC.

8 May 2024

Command and Control

• Low level SpawnAs implementation based on novel research, which also serves as a UAC bypass at Stage 1.

Updates

• Enhanced OPSEC on PE Payload Generator, Stage1, and ShovelNG: evading EDR emulation.

• Under the hood quality of life improvements and bug fixes.

Back to Top

Powertech

Powertech Antivirus for IBM i

Version 8.10

May 14, 2024

New Features

• On-access and On-demand scan statistics along with Virus detection events are now forwarded to the PTAV Server for use in dashboards.

• In addition to On-demand scanning, on-access scanning can now be configured in the HelpSystems One PTAV application.

• Extended support for IBM i endpoints within Powertech Antivirus:

  • Anti-ransomware functionality can now be configured for IBM i endpoints. Requires this version (8.10 (R8M10)) or higher of the Powertech Antivirus for IBM i software to be installed on the IBM i system.

Enhancements

• The Trellix 6600 scan engine has been incorporated. Compared to the previous version of the scan engine, this offers improvements in detection capabilities, performance, product security and stability, improved support for DMG files, and support for the APK file type.

• The documentation of the anti-ransomware functionality has been extended massively to highlight the detection mechanisms, mitigation mechanisms, and usage scenarios.

• The Anti-Ransomware section of the User Guide has been updated to more clearly distinguish between the two detection mechanisms.

• All references to "McAfee" have been replaced with the new brand name, "Trellix".

• In the User Guide, the section on Monitoring the product has been extended to include additional messages to monitor for, such as the AVE3001 and AVE3002 anti-ransomware messages.

• Endpoint registration has been improved as follows:

  • The Endpoint Menu now has two options:

    1. Register as Web Endpoint (prompts a new command AVREGWEB which allows the user to register the system as an endpoint).

    2. Control Web Endpoint Servers (prompts the existing AVINSITE command)

• In the 'Monitoring' section of the User Guide, updated information is provided about which messages to monitor for in Powertech Antivirus.

• Support has been added for scanning multiple directories when the scan is configured from the GUI.

• The fields, “block time” and “block origin” have been added to blocked users within the web server.

• The Integrity Scan log has been amended to have an ascii ccsid.

• The information in the User Guide about managing IBM i endpoints with Powertech Antivirus Server has been expanded.

Fixes

• Under certain conditions, a Qp0lProcessSubtree API failed with error code -1 message would be generated. Processing has been amended to reduce the occasions upon which this occurs.

• An infected file found on an iASP is now Quarantined correctly.

• Work with Canary Files (AVWRKCNY) now handles many more definitions. The new limit is based upon storage location.

• QMSF Scanning now works as expected.

• Objects related to the legacy Operations Navigator(TM) plugin for Powertech Antivirus for IBM i have been removed from the installed objects.

• All scan paths configured on an on-demand scan path definition are now scanned if multiple paths are configured. While it was previously possible to specify multiple paths, only the last path specified was actually scanned.

• The list of Blocked Users is now always updated.

• The file "SCNRESULTS" is now created with size set at *NOMAX.

• User Indexes are now created with the correct Owner.

• An issue where the DAT version, following download, was being shown as only four characters long, has been resolved.

• After running a DAT update with "Retrieve files only" RTVONLY(*YES), the superfluous character ('?') no longer appears in the text for Message Id AVC0207.

BoKS Manager

Version 8.1 (version update)

May 02, 2024

Client c-8.1.1.6

Fixes

• The following dependencies were upgraded for security:

• OS command injection might occur if a user name or host name has shell metacharacters.

• Destination constraints only apply to the first key in the PKCS#11-hosted private keys.

• SSH Terrapin-attack.

NOTE: For more detail, including CVE references for fixes, see the README file.

Version 8.1 (version update)

May 2, 2024

Server s-8.1.1.4

Fixes

• BoKS rule ID changes during migration from 7.2

BoKS SSH Client for Windows

Version 8.1.1

May 13, 2024

New Features

• Upgraded to be based on PuTTY 0.81.

Back to Top

Robot

Robot Console

Version 7.11

May 22, 2024

New Features

• Added *SYSBAS and Independent ASP (IASP) monitoring to resource monitoring. This allows the checking of storage usage, and the status of IASPs.

Enhancements

• Added the ability to use WebSphere MQ resource monitoring when the MQ configuration is in an independent ASP (IASP).

Fixes

• Fixed issue with the Connection Properties not updating the Certificate Expiration Date when a new certificate was retrieved.

• During the product conversion, the process will not stop if there is a failure on an IFS object restore, but instead issue a warning.

• Fixed issue where not all informational messages were being sent to network host when using OPAL

• Improved error message during a product update when the license code is invalid.

• Fixed issue where the installer could fail with an 'invalid command line' error.

• More time is now allowed for processing of IBM FTP server jobs when initially turning on FTP Log Monitoring. This resolved an issue where FTP servers were occasionally ended but not restarted as part of turning on FTP Log Monitoring.

Back to Top

TeamQuest

Administration Console

Version 11.4.9

May 21, 2024

Enhancements

• Upgrade Apache HTTP to version 2.4.59

• Update OpenSSL to version 3.3.0 (Linux only)

TeamQuest Manager

Version 11.4.15

May 21, 2024

Enhancements

• Upgrade Apache HTTP to version 2.4.59

Back to Top

Terranova Security

Version: 1.99

May 30, 2024

Enhancements

• Inactive users, anonymous quizzes, and phishing simulations are excluded by default in the global SAI calculation.

Fixes

• There was an issue where content not available in a specific language, like French, still appeared as an option when creating a course in that language. This issue has been addressed and resolved.

• There was an issue with platform navigation where users could not interact with the platform when switching from one language template to another. The "Leave without saving" option was not displaying correctly preventing users from leaving a page without saving or refreshing. This issue has been fixed.

• There was an issue with the Security Awareness Index (Over Time and By Filter) widgets in the Global Dashboard where the filters did not work. This issue has been resolved.

• There was an issue with the SAI ranking in the Learning Zone where Global Admins were counted in the SAI ranking along with other end users and the ranking was not in ascending order. This issue has been fixed and now only end users are shown, from highest to lowest.

Version: 1.98

May 05, 2024

Enhancements

• Partners can now access their clients' license information with just one API call, authenticated using a bearer token. Previously, they had to make multiple API calls for each client. This enhancement will significantly reduce the time needed to complete this task for partners.

Fixes

• The issue of typos in quiz questions and different questions appearing in two languages, which should be consistent across all languages, has been fixed.

• The issue where content (courses and quizzes) launched in Portuguese displayed the start date in different languages has been resolved.

• The issue where a client encountered a 500 error message when attempting to click on the Quiz Access Email in the Campaign Manager Email Center has been resolved.

• The issue of an info bubble appearing even when the mouse pointer is not over the bubble icon has been fixed.

• There was an issue when running a continuous simulation with multiple scenarios and double-barrel emails. The subsequent scenario sent after the first would send the double-barrel email simultaneously, whereas there should be a delay between the email and the double-barrel email. This issue has been addressed and fixed.

• The Manager Escalation-Phishing Simulations templates were missing in some instances. This issue has been resolved.

• There was an issue with the pause and resume feature in double barrel, recurrent, and continuous simulations, and was not functioning properly. It should pause all emails, including those scheduled for later, when any of these simulations are paused. This problem has been addressed and fixed.

Version: 1.98.1

May 15, 2024

Fixes

• The progress report by course emails did not display the graphs properly. This issue has been resolved.

• There was an issue with images in phishing simulation emails not displaying properly even though the option to embed images in the email is enabled. This issue has been fixed.

• There was an issue with phishing simulation emails containing QR codes not displaying properly in the Gmail inbox. This issue has been resolved.

• There was an issue with the manager escalation email sending out empty emails when the manager email had status options selected, but the email template selected did not include the corresponding status tags. This issue has now been fixed; if a status option is selected but the corresponding status tag is not in the email template selected, then this data will be omitted from the email report. If the only selection made is a status in which the corresponding status tag is not in the email template selected, the email won't be sent.

  Additionally, there will be an enhancement in the future where all selected options will be visible in the email template automatically, eliminating the need for manual addition by the user.

• The progress report by course emails were not displaying the graphs properly. This issue has been resolved.

• When the Status by Course report was filtered for active and inactive users and downloaded as an Excel file, the active column was missing, though it appeared in other reports. This issue has been addressed and resolved.

• There was an issue with the context menu in the send section in the email center. Clicking the menu took users to email settings instead of allowing them to choose other options. This issue has been resolved.

• There was an issue when trying to modify the quiz content in a campaign that was already launched but was scheduled to begin in the future. The quiz content could not be edited, except for the title and description. This issue has been resolved.

• There was an issue while modifying the quiz title and saving it. All checkboxes were unexpectedly unchecked, even though everything else besides the title should have stayed the same. This issue has been resolved.

Back to Top

Titus

Data Classification Suite Metadata SDK

Version 5.1

May 10, 2024

New Features

• Can write standard, custom, and embedded metadata to the following file types:

  • Open XML Files (for example, Microsoft docx, xlsx, and pptx files)

  • Compound document format files (for example, Microsoft doc, xls, and ppt files)

  • PDF files

• Can write embedded metadata to file types that support XMP metadata (for example, jpg, mp3, mp4)

Policy Manager

Version 2024.04 HF1

May 15, 2024

Fixes

• Improved Configuration publishing when a Schema Field is used multiple times in a Schema View and the condition builder in a Rule includes metadata properties for this Schema Field.

Back to Top

Vera

Version 3.23.6

May 2024

Fixes and Security Updates

• Share Page Policy Mapping

  • Fixed an issue where the Policy Mapping under Advanced Settings in the Share page was not saved after modification if more than one type of share was present.

Version 3.23.5

May 2024

Fixes and Security Updates

• Important Update to the Vera SaaS

  • The Secure Collaboration team will be performing an infrastructure upgrade to enhance its security posture.

Version 3.23.4

May 2024

Fixes and Security Updates

• Important Update to the Windows Agent

  • Fixed a security issue for the Adobe Acrobat Reader.

Back to Top