Monthly Release Notes - April 2025

Jump to:

Agari Alert Logic Automate Beyond Security
Boldon James Bytware CCSS Clearswift
Cobalt Strike Core Security Digital Defense Digital Guardian
Document Management FileCatalyst Fortra Fortra Application Hub
Fortra VM Globalscape GoAnywhere Halcyon
IBM Partnership Insite InterMapper JAMS
Outflank Security Tooling Powertech Robot Safestone
Sequel Showcase Tango/04 TeamQuest  
Terranova Security Titus Vera

 

Agari

Version 2025.04

April 2025

On-Prem Sensors
Enhancements

  • Adds support for podman container management software.

  • Adds support for the following OS versions: Ubuntu 22.04, Ubuntu 24.04, RHEL 8, RHEL 9.

Fixes

  • UI based sensor upgrade bug.

  • Various bug fixes.

Back to Top

 

Core Security

Core Impact

Version: 21.7

April 7, 2025

New Features
  • Agent Transformations: Added the ability to configure hooks in the agent generation process allowing payload customization like signing the implant or processing it with an obfuscator. This feature gives the operator the ability to code the callback they want to run.
  • Added the ability to configure email headers in Client-side Phishing attacks.

  • Upgraded the following Run module parameters dialogs: New Host, New Scenario, New Identitie(s), and Exposure Finder.

Enhancements
  • Bloodhound integration is now supported through their native API.

  • Added the ability to select the ODBC driver when using ODBC-based Identity Verifiers.

  • Added the ability to run Install Agent using SSH on Windows targets.

  • Internet Connection options have been moved from the Network Category to the Software Updates category for an improved user experience.

  • The included version of SQLServer has been updated from 2014 to 2022.

  • Dependencies update: impacket, npcap.

Fixes
  • Fixed a Vulnerability Scanner Validation issue that would occur when importing a TenableSC scan while using a password that contained "&".
  • Fixed an issue where Fortra VM integration was failing when running from a pivoted Linux agent.

  • The WebServer Service now correctly reports if it fails during initialization.

  • Fixed an issue where a race condition would occur during the WebServer Service's initialization when detecting an open port to configure the server on.

  • NetNTLM Identities are now correctly shown in hosts' Quick Information panel.

  • NTLMConnection entities are now correctly shown in MapView.

  • Fixed an issue where modified modules and libraries were not being overwritten when upgrading Core Impact to a new version.

  • Fixed an issue with running the following commands from the Powershell Shell: #import-url and #import-file.

Back to Top

 

Digital Guardian

Agent for Linux

Version: 10.1.0

April 2025

New Features

  • Certification for Additional Kernels

    This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to the Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v10.x.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v10.x.x_and_later_Ubuntu_Certified_Environments for the complete lists of supported RHEL and Ubuntu kernels.

Distribution

Version

Architecture

Kernel
RHEL 9.5 64-Bit kernel-5.14.0-503.35.1.el9_5
RHEL 9.5 64-Bit kernel-5.14.0-503.34.1.el9_5
RHEL 9.5 64-Bit kernel-5.14.0-503.33.1.el9_5
RHEL 9.5 64-Bit kernel-5.14.0-503.31.1.el9_5
RHEL 9.4 64-Bit kernel-5.14.0-427.62.1.el9_4
RHEL 9.4 64-Bit kernel-5.14.0-427.61.1.el9_4
RHEL 9.4 64-Bit kernel-5.14.0-427.60.1.el9_4
RHEL 9.4 64-Bit kernel-5.14.0-427.59.1.el9_4
RHEL 9.4 64-Bit kernel-5.14.0-427.57.1.el9_4
RHEL 9.2 64-Bit kernel-5.14.0-284.111.1.el9_2
RHEL 9.2 64-Bit kernel-5.14.0-284.110.1.el9_2
RHEL 9.2 64-Bit kernel-5.14.0-284.109.1.el9_2
RHEL 9.2 64-Bit kernel-5.14.0-284.108.1.el9_2
RHEL 8.10 64-Bit kernel-4.18.0-553.47.1.el8_10
RHEL 8.10 64-Bit kernel-4.18.0-553.46.1.el8_10
RHEL 8.10 64-Bit kernel-4.18.0-553.45.1.el8_10
RHEL 8.10 64-Bit kernel-4.18.0-553.44.1.el8_10
RHEL 8.8 64-Bit kernel-4.18.0-477.95.1.el8_8
RHEL 8.8 64-Bit kernel-4.18.0-477.94.1.el8_8
RHEL 8.8 64-Bit kernel-4.18.0-477.93.1.el8_8
Ubuntu 24.04 64-Bit linux-image-6.11.0-21-generic
Ubuntu 24.04 64-Bit linux-image-6.11.0-19-generic
Ubuntu 24.04 64-Bit linux-image-6.8.0-57-generic
Ubuntu 24.04 64-Bit linux-image-6.8.0-56-generic
Ubuntu 24.04 64-Bit linux-image-6.8.0-55-generic
Ubuntu 24.04 64-Bit linux-image-6.8.0-54-generic
Ubuntu 24.04 64-Bit linux-image-6.8.0-53-generic
Ubuntu 22.04 64-Bit linux-image-6.8.0-57-generic
Ubuntu 22.04 64-Bit linux-image-5.15.0-136-generic
Ubuntu 22.04 64-Bit linux-image-5.15.0-135-generic
Ubuntu 22.04

64-Bit

 linux-image-5.15.0-134-generic
Ubuntu 22.04

64-Bit

 linux-image-5.15.0-133-generic
Ubuntu 20.04 64-Bit linux-image-5.15.0-136-generic
Ubuntu 20.04 64-Bit linux-image-5.15.0-134-generic
Ubuntu 20.04 64-Bit linux-image-5.4.0-212-generic
Ubuntu 20.04 64-Bit linux-image-5.4.0-211-generic
Ubuntu 20.04 64-Bit linux-image-5.4.0-208-generic

  • Support for ADE Operations in the Gnome Text Editor

On Ubuntu 24.04, in the Gnome Text Editor (GTE) application, we can control ADE operations triggered by the ctrl+c and ctrl+v keyboard shortcuts during paste actions. In all other scenarios, such as right-click copy/paste, the operation is controlled at the time of copying. Therefore, to effectively monitor ADE operations within the Gnome Text Editor based on the source and destination file paths, it is essential to include conditions for both the source and destination file paths in the rule. This approach ensures that we capture events resulting from both mouse actions (such as right-clicks) and keyboard operations (like ctrl+c and ctrl+v).

IMPORTANT: Refer to the following guidelines.

  • To utilize ADE with ctrl+c/ctrl+v mode in Gnome Text Editor (GTE), the rule configuration must be adjusted to include the evtDestFilePath condition. Both evtSrcFilePath and evtDestFilePath should be identical.

  • To support ADE through keyboard shortcuts, an external tool must be installed on the machine. Use the following Linux bash commands for installation:

    • Ubuntu 24.04 LTS — apt install wl-clipboard

Fixes

  • Fixed an issue on Ubuntu 24.04 LTS where the Application Data Exchange (ADE) events—specifically the keyboard shortcuts (ctrl+c, ctrl+x, and ctrl+v)—could not be intercepted within the GNOME Text Editor.

Agent for Windows

Version: 9.1.0

April, 2025

Fixes

  • An issue occurred where configurations that did not capture USER_ADE_PASTE events were showing partial ADE PASTE data in the forensic report, with the file details row missing. This has been resolved, and the ADE PASTE forensic report now includes both the file details and buffer details rows. If an alert was configured in the rule, it will appear in the file details row, maintaining consistency with behavior in version 7.9.1 and earlier.

  • An issue was encountered in Chrome and Edge, where the agent incorrectly detected any text entered in the address bar (without pressing Enter) as the destination URL during ADE paste events. This caused the event to report the incorrect URL, leading to improper rule activation. This issue has now been resolved, ensuring the agent ignores any unapplied text in the address bar and accurately detects the actual URL. As a result, the rule triggers correctly when a user attempts an ADE paste into an unapproved site.

  • An issue in DG Agent 9.0 and earlier required the ARC server’s FQDN to be resolvable from the Agent endpoint, even when a proxy was used, causing problems in restricted DNS environments. This issue is now resolved. A new configuration parameter, proxyGRPCResolver, now allows hostname resolution to be deferred to the proxy when set to "passthrough", removing the need for local resolution.

  • Microsoft Outlook crashes when dragging and dropping an email with a long subject (around 254 characters) into a subfolder when using DG Agent 8.1, The issue has been resolved.

  • The issue related to browser crashes due to duplicate handles and missing null checks has been resolved.

  • A connection timeout issue was encountered with Zoom meetings when a Windows 10 system wakes from sleep, resulting in delays of up to 5 minutes and an "unknown error" message. This issue has been resolved. Now the default settings has been changed to the following:

    <wipConnectionCheckV4Enable>0</wipConnectionCheckV4Enable>

    <wipConnectionCheckV6Enable>1</wipConnectionCheckV4Enable>

    Refer to Digital Guardian 8.7 Management Console Users Guide for more details.

  • An issue was encountered in Windows Agent 8.0 where it failed to block CD writes when using DG control rule. This issue is now resolved.

  • The issue of differentiating between the new Microsoft Outlook Add-in and an external server has been resolved. A local loopback address check was added to ensure proper distinction.

  • The issue related to skipping RTC requests/responses for meet.google.com has been resolved. A new Lua script was added to manage this behavior, along with handling responses in DGWIP. To apply the fix, update to the latest DG WIP Script Pack Resource File proxy script. Refer to the Digital Guardian 8.7 Installation and Upgrade Guide for more details.

  • The issue where the Agent failed to send the correct machine type string for Windows 11 to the server has been resolved. This issue specifically affected Windows 11 machines that were upgraded from a previous version, such as Windows 10.

Version: 7.9.3.0034

April, 2025

Fixes

  • Resolved an issue where NetOp control rules were not applied when traffic was routed through internal proxies such as Zscaler or Prisma Endpoint (Prisma EP) using explicit proxy configurations. As a result, all traffic was redirected to internal IP addresses, causing NetOp rules to be skipped leading to uninspected data egress. This issue has now been resolved.

    The fix introduces a configuration key, a list of internal ports using the configuration key <InternalPortListForNetop>, ensuring NetOp rules are correctly applied for specified ports.

    Example Configuration: <InternalPortListForNetop>9000,8888-8900,12000-12500,8888</InternalPortListForNetop>

    The value of <InternalPortListForNetop> must be a comma-separated list and can include a single port (e.g., 9000), a range of ports (e.g., 8888-8900), or a combination of both. A maximum of 10 entries can be configured and any entries beyond the first 10 will be ignored. Additionally, if the list contains invalid characters or formatting errors, the entire value will be treated as empty.

Back to Top

 

Fortra

Endpoint Manager

April 21, 2025
Enhancements

  • Updated details drawer action buttons, removing Save option.

Fixes

  • Resolved security vulnerabilities and minor bug fixes.

Fortra platform

April 10, 2025
Enhancements

  • Account selector no longer appears on Add/Edit Roles page if the current tenant has no child tenants.

Fixes

  • Fixed issue with blank banner appearing if banner message is deleted.

  • Resolved security vulnerabilities and minor bug fixes.

Back to Top

 

GoAnywhere

GoAnywhere MFT

Version 7.8.0

April 24, 2025

New Features

  • Added support for legacy path-style access to the Amazon S3 Resource.

  • Added ability to enable AES data encryption for UDP transfers made over FileCatalyst.

  • Added support for Azure Data Lake Gen2 integration as a Resource.

  • Added additional restrictions requring Diagnostics-View permissions to the About page.

  • Added a FileCatalyst List task for listing files on a FileCatalyst server.

  • Added File Manager logging to the Administration Audit Logs.

Enhancements

  • Enhanced messaging between GoAnywhere MFT and Gateway to avoid memory leak in rare situations.

  • Enhanced the Project Outline to retain the folder expand/collapse state.

  • Enhanced the process that determines if IP addresses are allowed/denied on services to be more efficient and take less memory.

  • Enabled File Restrictions by default when creating new Domains.

  • Reduced Memory Fragmentation for all service transfers.

  • Added an advanced backpressure system that will reduce the memory footprint of proxied channels and remove the risk of channel lockup due to backpressure issues.

  • Added option to allow Domain specific folders to be exempt from File Restrictions automatically.

  • Added Job File Auditing for the PeSit client send/receive actions.

  • Adjusted change history field for Azure resources SAS token.

Updates

  • Updated the FileCatalyst service to more efficiently utilize UDP data ports when connecting through Gateway.

  • Updated the bar chart and pie chart gadgets from Primefaces components to React components.

  • Updated the UnboundId LDAP API to the latest 4.0.14 version (addresses a memory leak).

  • Updated Tomcat from version 9.0.98 to 9.0.102.

  • Updated the mina-core library from 2.1.5 to version 2.1.10.

  • Updated netty-all from version 4.1.108.Final to 4.1.118.Final.

  • Updated commons-io library from version 2.15.1 to 2.17.0.

  • Updated JNQ from version 2.5.1 to 2.5.6.

  • Updated esapi from 2.5.3.1 to 2.6.0.0.

  • Updated Azure Blob Storage API Version from 5.5.0 to 12.23.0.

  • Upgraded PrimeFaces from 7.0.14 to 7.0.32-LTS to remediate jQuery-UI CVEs.

Fixes

  • Fixed an issue where emails sent using the Files and GoDrive features in the Web Client were susceptible to cross-site scripting (XSS) attacks. This remediates CVE-2024-11922.

  • Fixed an issue with the dashboard gadgets not displaying the proper text on certain Chromium builds.

  • Fixed an issue with an incorrectly labeled S3 regional server

  • Fixed an issue where FCService would break if the FC Client uploaded with zip archives.

  • Fixed an issue within Job Log Purging that would leave Job Log folders locked.

  • Fixed an issue in PeSIT where the PI-27 value was incorrect for FPDU_TRANS_END when the client uses the MONO_PDU transfer type.

  • Fixed an issue with Secure Mail where the auto generated password was not being displayed to the user when "Include Password In..." was disabled.

  • Fixed an issue where deadlocking occurred when transitioning an active job to completed job.

  • Fixed an issue where directory creation in FCService could be marked as a 0 byte file.

  • Fixed an issue with AS4 processing where a security library was not initialized.

  • Fixed an issue that occurred when updating a Secure Form definition where the modified by value was not getting updated.

  • Fixed an issue where adding a duplicate trigger resulted in a 500 error instead of displaying the appropriate duplicate trigger message.

  • Fixed an issue with an information disclosure vulnerability in SFTP error responses. When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message now shows only the virtual path instead of the absolute server path, safeguarding filesystem structure details.

  • Fixed an issue with the handling of variable names that contained leading or trailing spaces.

  • Fixed an issue within Agent Schedule where repeating scheduled jobs did not pass project variables after the initial schedule run.

  • Fixed an issue with Cloud Connectors tasks having List Input Variables that could cause ClassNotFoundException if they were going to be deleted.

  • Fixed an issue with the Malicious User Name Monitor where it would flag IP Addresses if enabled but the Automatic Block List was disabled.

GoAnywhere Agents

Version 2.4.0

April 24, 2025

New Features

  • Added a FileCatalyst List task for listing files on a FileCatalyst server.

  • Added support for Azure Data Lake Gen2 integration as a Resource.

Enhancements

  • Added support for path-style access to the Amazon S3 Resource.

Updates

  • Updated netty-all from version 4.1.108.Final to 4.1.118.Final.

  • Updated JNQ from version 2.5.1 to 2.5.6.

  • Updated commons-io library from version 2.15.1 to 2.17.0.

Fixes

  • Fixed an issue with the handling of project variable names that contain leading or trailing spaces.

GoAnywhere Gateway

Version 3.3.0

April 24, 2025

  • Added support for NAT addresses in UDP proxy settings.

  • Added the capability for UDP ports to be released on-demand.

  • Added an advanced backpressure system that will reduce the memory footprint of proxied channels in GoAnywhere and remove the risk of channel lockup due to backpressure issues.

  • Added Support for a Linux Gateway Image on the AWS Marketplace.

  • Added Support for a Windows Gateway Image on the AWS Marketplace.

  • Improved memory usage for allocated UDP ports.

  • Improved efficiency when setting up a Reverse Proxy connection.

  • Updated netty-all from version 4.1.108.Final to 4.1.118.Final.

  • Updated the commons-io library from version 2.11.0. to 2.17.0.

  • Updated the default value for IPV4 Subnet masking from 24 to 32.

  • Updated log4j version from 2.17.1 to 2.20.0.

  • Fixed an issue in the installer that prevented additional configuration or backwards navigation if the 'Proxy Protocol Port' was invalid or not specified.

Back to Top

 

IBM Partnerhsip

IBM Power HA SystemMirror for IBM i

Version 7.6 HA 6.0.3 PTF SJ05111 (plus language PTFs)
Included in PTF Group SF99686 760 High Availability for IBM i - level 1

April, 2025

New Features

  • Enhanced integration with IBM Power Virtual Server including:

  • Volume (LUN-Level) Switching enabling high availability within a Power Virtual Server Workspace.

  • Independent ASP (IASP) FlashCopy support, including automation capabilities similar to those currently available with FlashCopy for Spectrum Virtualize (SVC) and FlashSystems environments.

Enhancements

  • Simplified configuration of Global Replication Services with new Configure Power Virtual Server Mirror (CFGPVSMIR) command.

  • Added support for volume IDs up to 9999 for SVC copy descriptions.

Fixes

  • Improved integrated recovery in DS8000 LUN-Level switch environments by enabling improved automated recovery via the Change Cluster Resource Group (CHGCRG) command.

  • Resolved an issue where the F7 position to function key may not appear on the Work with Monitored Resources (WRKCADMRE) screen after returning from the display details or display attributes screens.

  • Improved Configure Geographic Mirroring (CFGGEOMIR) to support automated naming in environments with multiple cluster resource groups. Previously, using automated naming with CFGGEOMIR in environments with multiple cluster resource groups would fail with errors, requiring additional manual steps.

  • Improved diagnostic messages when unable to reach IBM Cloud Services in Power Virtual Server environments. Previously, messages ‘HAE2057 - An error has been returned by the storage subsystem’ and ‘CPE3401 - permission denied could occur in this environments’.

  • Resolved an issue where PowerHA operations could fail with messages CPF9D8D, or CPE3452 on various IFS files appearing in either the user joblog or QHASVR joblog.

  • Corrected the SQL query displayed on the PowerHA web interface when filtering monitored resources by global status. Previously, the displayed SQL query was incorrect and would fail if run manually.

  • Reduced the number and size of PowerHA web interface log files to be kept for a maximum of 30 days.

  • Resolved an issue where Change CRG Primary (CHGCRGPRI) could fail in SVC HyperSwap with LUN-Level switching environments with error 'HAE2057- An error has been returned by the storage subsystem' containing the following message in the second level text: 'CMMVC5804E - The action failed because an object that was specified in the command does not exist.'

  • Resolved an issue where message CPF24B4 could be sent to the joblog when ending a CRG container.

NOTE: PTF updates require one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter for SJ05111.
Version 7.5 HA 5.7.3 PTF SJ05052 (plus language PTFs)
Included in PTF Group SF99676 750 High Availability for IBM i - level 10

April, 2025

New Features

  • Enhanced integration with IBM Power Virtual Server including:

  • Volume (LUN-Level) Switching enabling high availability within a Power Virtual Server Workspace.

  • Independent ASP (IASP) FlashCopy support, including automation capabilities similar to those currently available with FlashCopy for Spectrum Virtualize (SVC) and FlashSystems environments.

Enhancements

  • Simplified configuration of Global Replication Services with new Configure Power Virtual Server Mirror (CFGPVSMIR) command.

  • Added support for volume IDs up to 9999 for SVC copy descriptions.

Fixes

  • Improved integrated recovery in DS8000 LUN-Level switch environments by enabling improved automated recovery via the Change Cluster Resource Group (CHGCRG) command.

  • Resolved an issue where the F7 position to function key may not appear on the Work with Monitored Resources (WRKCADMRE) screen after returning from the display details or display attributes screens.

  • Improved Configure Geographic Mirroring (CFGGEOMIR) to support automated naming in environments with multiple cluster resource groups. Previously, using automated naming with CFGGEOMIR in environments with multiple cluster resource groups would fail with errors, requiring additional manual steps.

  • Improved diagnostic messages when unable to reach IBM Cloud Services in Power Virtual Server environments. Previously, messages ‘HAE2057 - An error has been returned by the storage subsystem’ and ‘CPE3401 - permission denied could occur in this environments’.

  • Resolved an issue where PowerHA operations could fail with messages CPF9D8D, or CPE3452 on various IFS files appearing in either the user joblog or QHASVR joblog.

  • Corrected the SQL query displayed on the PowerHA web interface when filtering monitored resources by global status. Previously, the displayed SQL query was incorrect and would fail if run manually.

  • Reduced the number and size of PowerHA web interface log files to be kept for a maximum of 30 days.

  • Resolved an issue where Change CRG Primary (CHGCRGPRI) could fail in SVC HyperSwap with LUN-Level switching environments with error 'HAE2057- An error has been returned by the storage subsystem' containing the following message in the second level text: 'CMMVC5804E - The action failed because an object that was specified in the command does not exist.'

  • Resolved an issue where message CPF24B4 could be sent to the joblog when ending a CRG container.

NOTE: PTF updates require one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter for SJ05052.
Version 7.4 HA 4.13.3 PTF SJ05104 (plus language PTFs)
Included in PTF Group SF99666 740 High Availability for IBM i - level 20

April, 2025

New Features

  • Enhanced integration with IBM Power Virtual Server including:

  • Volume (LUN-Level) Switching enabling high availability within a Power Virtual Server Workspace.

  • Independent ASP (IASP) FlashCopy support, including automation capabilities similar to those currently available with FlashCopy for Spectrum Virtualize (SVC) and FlashSystems environments.

Enhancements

  • Simplified configuration of Global Replication Services with new Configure Power Virtual Server Mirror (CFGPVSMIR) command.

  • Added support for volume IDs up to 9999 for SVC copy descriptions.

Fixes

  • Improved integrated recovery in DS8000 LUN-Level switch environments by enabling improved automated recovery via the Change Cluster Resource Group (CHGCRG) command.

  • Resolved an issue where the F7 position to function key may not appear on the Work with Monitored Resources (WRKCADMRE) screen after returning from the display details or display attributes screens.

  • Improved Configure Geographic Mirroring (CFGGEOMIR) to support automated naming in environments with multiple cluster resource groups. Previously, using automated naming with CFGGEOMIR in environments with multiple cluster resource groups would fail with errors, requiring additional manual steps.

  • Improved diagnostic messages when unable to reach IBM Cloud Services in Power Virtual Server environments. Previously, messages ‘HAE2057 - An error has been returned by the storage subsystem’ and ‘CPE3401 - permission denied could occur in this environments’.

  • Resolved an issue where PowerHA operations could fail with messages CPF9D8D, or CPE3452 on various IFS files appearing in either the user joblog or QHASVR joblog.

  • Corrected the SQL query displayed on the PowerHA web interface when filtering monitored resources by global status. Previously, the displayed SQL query was incorrect and would fail if run manually.

  • Reduced the number and size of PowerHA web interface log files to be kept for a maximum of 30 days.

  • Resolved an issue where Change CRG Primary (CHGCRGPRI) could fail in SVC HyperSwap with LUN-Level switching environments with error 'HAE2057- An error has been returned by the storage subsystem' containing the following message in the second level text: 'CMMVC5804E - The action failed because an object that was specified in the command does not exist.'

  • Resolved an issue where message CPF24B4 could be sent to the joblog when ending a CRG container.

NOTE: PTF updates require one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter for SJ05104.

Back to Top

 

Powertech

BoKS Reporting Services

Version 9.0.0.0

April 25, 2025

New Features

  • New report added: User class access to host for all methods.

  • Support for BoKS principal.

  • Support for BoKS user authentication.

  • New reports - Unix Group Member Listing, Unix Group Set Members, Principal Members Listing, Principal Listing.

Updates

  • Directories for configuration (etc) and logs (var) are moved to the installation directory (/opt/brs).

  • Java 21 or later is required.

  • REST API: UserClass reports renamed to AccessRuleSet.

  • Support for relocation of directories during install of the RPM packages is removed.

Fixes

  • brsuserpwd command did not update password history.

  • Fixed logging of failed database connection.

  • Removal of a default admin password.

Back to Top

 

Robot

Robot HA

Version 13.09

April 22, 2025

NOTE: If you are using DDM, after updating Robot HA from 13.08 or before to the latest version on both systems, you must run RHACHGDDM to reconfigure DDM. This is needed due to the switch to use RBTADMIN instead of QSECOFR.
New Features

  • Robot HA now supports IBM i 7.6.

  • Added support for synchronizing new MFA-related user profile fields at IBM i 7.6 including authentication methods and user TOTP key. This enables users to sign in on backup systems with the same MFA configuration that was configured on the source.

Enhancements:

  • Changed Robot HA to swap to RBTADMIN instead of QSECOFR for improved auditing and in support for MFA changes for IBM i 7.6.

Fixes

  • Improved error message during a product update when the license code is invalid.

  • Fixed issue where synchronizing certain user profiles failed with RSF9896.

  • Improved the handling of system values to decrease the number of errors received.

  • Fixed issue where Robot HA encountered CPF22E6 indicating the maximum number of profile handles have been generated.

  • Improved performance of deleting records that contained a BLOB object. Previously, if the file was not already opened and contained a blob object the delete would fail resulting in a refresh of the file.

Back to Top

 

Terranova Security

Version: 1.113

April 30, 2025

Enhancements

  • The Stop option in the phishing simulation has been renamed to Stop and Cancel. It ends the simulation and does not save any data collected.

  • The pop-up message displayed when a user clicks the 'Stop and Cancel' button in a phishing simulation has been updated to reflect the feature's accurate behavior.

  • The course completion widget has been updated with a new option to include or exclude inactive users from the data displayed.

  • The platform web app was earlier integrated with Azure AD for SSO only. Now, SCIM support has been added as well, simplifying the setup process for clients.

Fixes

  • There was an issue where the “Phishing Template Overview” section failed to load and returned an error when configured with specific time zones. This issue has been fixed.

  • There was an issue with the "Edit Global CSS/JavaScript" feature on phishing simulation landing and feedback pages. Users without the required permissions could not see the JavaScript section, but clicking Save would still erase its content. This issue has been fixed, only users with the proper permissions can view or edit it.

  • There was an issue with the New User Flag Duration feature where users remained marked as "New User" even after the set number of days had passed. As a result, they continued to be available in the New User filter. This issue has been fixed.

  • Whenever a user tries to add an IP address to the exclusion list using the Add button, the IP is not added and returns an error. This issue has been fixed.

  • There was an issue with the saved reports where specific columns were misplaced when downloaded in Excel format, while they appeared in the correct place when viewed on the platform. This issue has now been fixed.

  • The course completion widget was displaying incorrect data by including inactive users by default, which was not supposed to happen. This issue has been fixed.

  • There was an issue where the PDF data exported from the phishing simulation widgets' Web Browser and Operating System did not match and were inconsistent. This issue has been fixed.

  • The contents in the catalog, when filtered by language, were displaying items that were not available in the selected language. This issue has been fixed.

  • The Total Education Time column in the Simulation Results and Simulation Results - Events Log reports was showing different values, whereas they should be consistent. This issue has been fixed.

  • The emails scheduled using the later or recurring option were sent multiple times instead of being sent only once at the scheduled time. This issue has been fixed.

  • When the Manager Escalation - Phishing Simulation email was selected using the Add Email feature, a 500 error message was returned. This issue has been fixed.

Version: 1.112.2

April 01, 2025

Fixes

  • There was an issue with the Simulation Results widget where users were marked as passed if they reported the simulation first but later performed a failed action (clicking a link, filling out a form, or opening an attachment). They should have been marked as failed instead. This issue has been fixed.

Back to Top

 

Titus

DCS for Data at Rest (DaR)

Version 6.0

April 4, 2025

IMPORTANT:

This release of DCS for DaR only supports TCPG Configuration files that are published in DCS

Policy Manager (Cloud). For more information on how to import and export Configuration files and

author new Configurations, see the DCS Policy Manager (Cloud) documentation.

 

If you are still using the DCS Administration Console with DCS for Windows, you must install DCS

for DaR 5.0 or an earlier version.

New Features

  • You must use DCS Policy Manager (Cloud) to create Configurations for each DCS for DaR scanner.

  • Added support for new actions in DCS Policy Manager (Cloud):

    • Add SharePoint managed metadata

    • Apply date offset

Enhancements

  • Confirmed support for SharePoint Server Subscription Edition.

Fixes

  • Fixed issue where DCS for DaR was unable to classify files in SharePoint Online folders that included the percentage symbol (%) in the folder name.

  • Fixed token access issue for SharePoint Server Subscription Edition.

  • Fixed issue that led to this error: “Object reference not set to an instance of an object on server. The object is associated with property Author.”

Considerations

  • DCS for DaR 6.0 cannot support the following features because they are not supported in the DCS Policy Manager (Cloud) 2025.01 release:

    • Custom Actions

    • Smart Regex Dynamic Property

    • Vera integration

  • For copy and move actions for SharePoint, DCS for DaR 6.0 requires a full path for the "Destination" parameter. Relative paths were allowed in previous releases, but this is unreliable. Confirm you are providing the full path if you configured these actions for SharePoint scans. You can find the full path in the "Details" of a SharePoint folder or file.

DCS One (Cloud)

Version 2025.04

April 25, 2025

New Features

  • DCS One now uses Microsoft’s Nested App Authentication (NAA) to enable single sign-on (SSO) authentication for applications such as Outlook. This update is in response to Microsoft turning off legacy Exchange Online tokens and ensures the DCS web add-in will work as expected.

  • Added support for applying data classification labels to custom document properties in Microsoft PowerPoint Online. In previous releases, DCS One could only read and write metadata in the custom document properties of Word Online and Excel Online.

DCS Policy Manager (Cloud)

Version 2025.04

April 25, 2025

New Features

  • Added Smart Regular Expression Custom Condition for DCS for Data at Rest (DaR) and DCS for Windows. This new DCS Policy Manager Custom Condition functions similar to the Titus.SmartRegex.Extensibility.SmartRegexCustomCondition Dynamic Property in the DCS Administration Console. Key differences include:

    • You can enter a custom JSON in DCS Policy Manager instead of needing to upload a custom JSON file.

    • The “Password” parameter is not supported in DCS Policy Manager.

Enhancements

  • Removed option to log in with Google authentication. You must use Microsoft authentication to access the DCS Console site that includes the DCS Policy Manager.

  • Enhanced audit logs to include more action details for Policies.

  • For DCS for DaR and DCS for Windows:

    • Added support for configuring and importing “Replacement text” for Predefined Matches for Content Validation Profiles. Predefined Matches are the same as Library Matches in the DCS Administration Console. In DCS Policy Manager, editing Predefined Matches creates a copy in the Custom Matches library. You can configure additional parameters after creating a copy.

Back to Top