Monthly Release Notes - May 2025

Jump to:

Agari Alert Logic Automate Beyond Security
Boldon James Bytware CCSS Clearswift
Cobalt Strike Core Security Digital Defense Digital Guardian
Document Management FileCatalyst Fortra Fortra Application Hub
Fortra VM Globalscape GoAnywhere Halcyon
IBM Partnership Insite InterMapper Outflank Security Tooling
Powertech Robot Safestone Sequel
Showcase Tango/04 TeamQuest Terranova Security  
Titus Vera

 

Agari

Cloud Email Protection

Version 2025.05

May 2025

Updates

  • New and Updated Organization page.

  • Updated Organization Audit Trail page.

  • Updated Executive Summary Page.

Fixes

  • Various bug fixes and updates.

Back to Top

 

Alert Logic

Managed Web Application Firewall (WAF)

Version 5.2.2.3-2794

May 1, 2025

New Features

  • CloudFront support for DDoS protection outside AWS

Enhancements

  • CloudWatch metrics added in 5.2.2.2 are now optional and use the AlertLogic/System namespace

Bug Fixes

  • GeoIP access violations will not be logged if configured to not be logged

  • Parse DDoS configuration correctly

  • Clean up relevant metadata after switching away from primary/teacher role

  • Eliminate JavaScript console error message when adding new websites

  • Update WEBUnauthorizedContent subclass ID

  • Normalize JSON string literal payloads to avoid incorrect double-encoding violations

  • Dependencies updated to address CVEs (CVE-2025-27144, CVE-2025-22869, CVE-2025-22870, CVE-2025-30204). These issues pertain to functions not utilized by the WAF, and therefore pose no local impact.

Back to Top

 

Beyond Security

beSTORM

Version 13.4.0

May 28, 2025

New Features

  • Added the Bluetooth File Transfer Profile module.

  • Added the DHCPv6 module to support the DHCP for IPv6 protocol described in standard RFC 8415.

  • Added the OSPFv2 with Adjacency module. This module establishes an adjacency with DUT (Device Under Testing) before starting fuzzing it for protocol OSPF Version 2 protocol described in standard RFC 2328.

  • Added the OSPFv3 with Adjacency module. This module establishes an adjacency with DUT (Device Under Testing) before starting fuzzing it for protocol OSPF Version 3 protocol described in standard RFC 5340.

  • Added the Unified Diagnostic Services on IP (UDSonIP) module.

Enhancements

  • Reports for paused or completed beSTORM projects now show the combinations completed and the total estimated combinations.

  • beSTORM Monitor log entries now include a timestamp.

  • beSTORM Monitor now shows the list of Processes and Services in case insensitive order.

  • Added support for gdb_monitor.py and gdb_monitor_python3.py monitors.

Fixes

  • Fixed an issue where the Persistent Monitoring option in beSTORM Monitor was attempting to reattach to the selected process every second causing an infinite loop of error messages. beSTORM Monitor will now increase how long it waits for every unsuccessful attempt.

  • Fixed an issue where a port scan would continue to run after selecting the Cancel button to exit from the port scan dialog.

  • Fixed an issue where selecting X to close the Module Buffer Types dialog after deleting a buffer type did not delete the buffer type.

  • Fixed an issue where if the environment variable’s Type was set to String, it would appear as Not Set in the Environment Settings table of the fuzzing report.

  • Fixed an issue where selecting Apply instead of OK would not apply changes to a beSTORM project’s configuration settings.

  • Fixed an issue where if a test was omitted for a module under Test Selection, its value was included in the total combination sum.

  • Fixed an issue where, when a beSTORM project was paused or stopped and then later resumed, generated reports incorrectly loaded the combinations of all previous sessions.

  • Fixed an issue where incorrect values for the estimated number of combinations and time remaining would appear in the Module Browser pane when using the RTSP module.

  • Fixed an issue where beSTORM would be blocked when using the Ethernet module with the Scale Type parameter set to Serial.

  • Fixed an issue where the combination count was incorrect if the Scale Type parameter was set to Serial.

  • Fixed an issue where incorrect values for combinations performed on each node could appear on generated reports if the Scale Type parameter was set to Timed.

  • Fixed an issue that prevented external libraries from being loaded in the Ubuntu version of beSTORM, which rendered several modules unusable.

Back to Top

 

Cobalt Strike

Version: 4.11.1

May 12, 2025

Enhancements

  • Added deprecation warning to the c2lint process when the "stage.rdll_loader" malleable c2 option is set to stomp loader.

Fixes

  • Fixed issue with Beacon crashing in a CFG enabled process, using module stomping, and using the default injection technique introduced in version 4.11.

  • Fixed issue with the "Use SSL" checkbox not being enabled when a self-signed SSL certificate is configured in the https-certificate Malleable C2 profile setting.

Back to Top

 

Digital Guardian

Agent for Windows

Version: 9.2.0

May, 2025

New Features

  • This release adds support for the new Outlook Print Event, enabling compatibility with any policy that utilizes the Print Event and ensuring full support for print-related policies.

Fixes

  • Resolved a false positive alert related to tamper resistance involving the DGWIP process.

  • Resolved an issue where user response text from a DG Windows Agent Justification Prompt was not sent to DGMC when the response was optional.

  • Resolved issue by removing redundant APIs from the DGWIP process.

  • Resolved an issue where NetOp control rules were not applied when traffic was routed through internal proxies such as Zscaler or Prisma Endpoint (Prisma EP) using explicit proxy configurations. As a result, all traffic was redirected to internal IP addresses, causing NetOp rules to be skipped leading to uninspected data egress. This issue has now been resolved. The fix introduces a configuration key, a list of internal ports using the configuration key <InternalPortListForNetop>, ensuring NetOp rules are correctly applied for specified ports.

    Example Configuration: <InternalPortListForNetop>9000,8888-8900,12000-12500,8888</InternalPortListForNetop>

    The value of <InternalPortListForNetop> must be a comma-separated list and can include a single port (e.g., 9000), a range of ports (e.g., 8888-8900), or a combination of both. A maximum of 10 entries can be configured and any entries beyond the first 10 will be ignored. Additionally, if the list contains invalid characters or formatting errors, the entire value will be treated as empty

Analytics & Reporting Cloud

Version: 5.3.0

May, 2025

Enhancements

  • DG ARC now features an upgraded version of Angular, enhancing security and ensuring ongoing supportability. This update also improves performance, making page transitions smoother and more responsive, especially on pages with many interactive elements

Fixes

  • Customer reported issue where the Events Forensic grid in the Investigation tab did not display the pages option when initially loaded. This included missing items-per-page dropdown and page navigation controls. This issue is now resolved.

Server

Version: 9.0.0

May, 2025

New Features

  • Introducing Asynchronous Policy Import Feature

    DGMC now supports Asynchronous Policy Import, designed to enhance productivity and user experience. Previously, imports were handled synchronously, which temporarily blocked the interface and disrupted workflows during lengthy imports. This often resulted in session timeouts, errors, and confusion about the import status, ultimately impacting user efficiency.

    With the new Asynchronous Import feature, policy imports can now run in the background, allowing users to continue working without interruption. DGMC supports two policy import methods:

    • Synchronous Import: The traditional method that blocks the interface until the import is complete.

    • Asynchronous Import: A new feature that keeps the interface accessible while the import runs in the background.

    This feature offers users enhanced control and flexibility, allowing them to select the option that aligns with their workflow requirements.

  • Transparent Proxy Network Extension for Mac Agents

    Starting with release 9.0.0, DGMC introduces the Transparent Proxy Network Extension for Mac Agents. This feature simplifies network traffic management by automatically routing traffic from supported browsers and legacy Outlook through the proxy server without requiring user configuration. Additionally, the Explicit Proxy option allows users to manually set up proxy configurations, such as server address, PAC URL, and port, for precise traffic routing. Both options provide flexibility and efficiency in managing network traffic.

Enhancements

  • Enhanced Menu Organization & Visualization

    As we prepare to streamline workflows in future updates, including our upcoming simplified Control Policy Manager, Fortra has made minor enhancements to the DGMC menu. These updates aim to align our product portfolio with a unified user experience. The key changes include the removal of feature icons from the menu options for a cleaner visual layout and renaming the 'Policies' menu to 'Advanced Policies' for improved clarity.

  • Enhanced Policy Import Report Tracking

    DGMC now tracks policy imports more effectively in the console activity report log. The log includes detailed entries such as file names, durations, and error or warning messages. New log entries indicate whether the import was synchronous or asynchronous, making it easier to monitor progress and troubleshoot issues effectively.

Fixes

  • Resolved an issue where attempts to access the policy deployment schedule would time out after 5 minutes.

  • Resolved an issue where the Archive Restore tool failed to work with SQL 2022 with the DGMC 8.7 upgrade. Customers can fix this issue by upgrading the Archive Restore tool.

  • Resolved an issue where LDAP sync failed with exceptions in multiple environments.

  • Resolved an issue where dynamic user groups with a large number of inactive users could not be deleted.

  • Resolved an issue where parametrization changes applied in a TextBox control are not preserved upon saving. Users must upgrade their DGMC Server to the latest 8.7.0.94 build.

  • Resolved an issue where users were being logged out of DGMC when adding users for Screen Capture.

  • Resolved an issue where a duplicate domain appeared on the main login window of the DGMC.

  • Resolved an issue where custom report filters did not display the date label when the "Between" operator was selected as date criteria.

  • Resolved an issue that caused duplicate rule entries when changing priority or severity, which led to unintended action blocking. Now, only the latest rule is applied, preventing errors and enhancing system stability

  • Resolved an issue where DGMC was skipping internal Mac users starting with an underscore. However, customers can now optionally enable these users by setting [SKIP_INTERNAL_MAC_USERS] to false in the database.

  • Resolved an issue where Mac agents were sending incorrect locale ID information during registration, preventing them from successfully registering with the DGMC.

  • Resolved an issue in which a limited set of new users, reported by DLP Agents for a specific endpoint machine, were not being registered by the DGMC. This situation only affects environments that do not have Active Directory synchronization configured. Additional logic was implemented to ensure this group is handled correctly.

  • Resolved an issue where the page would freeze when adding a rule to a policy.

  • Resolved an issue where rules deactivated in the Development environment were not remaining inactive when imported into the Production environment.

  • Resolved an issue affecting long-running LDAP sync jobs in both production and development environments due to db dead-locks.

  • Resolved an issue where exported data was not decrypting the fields properly.

  • Resolved an issue where pending settings were not clearing properly without the agent reporting status.

  • Resolved an issue where discrepancies in computer inventory between ARC and DGMC were causing inconsistencies.

  • Resolved an issue where DGMC performance was affected due to caching of static web assets such as fonts, images, css and javascript.

  • Resolved an issue where customers experienced an error when editing the LDAP filter and selecting the 'Test LDAP Query' button.

  • Resolved an issue where the Machine Removal API was not updating dynamic group exclusions correctly.

  • Resolved an issue where Old Sample Match tables were not being cleaned up as expected.

  • Resolved an issue where customers saw null values for user names in the DGMC Console Activity report.

  • Resolved an issue where DG Agents' pending tasks and settings were not clearing.

  • Resolved an issue by updating the Install and Upgrade Guide to specify the timezone used for upgrade options, improving clarity in upgrade scheduling.

  • Resolved an issue where the BundleArchive entry was missing from the DGMC dashboard component status after upgrading to version 8.6 or higher.

Agent for Mac

Version: 9.0.1

May, 2025

Fixes

  • The customer has reported an intermittent issue where browsing would break after rebooting the machine with Transparent Proxy enabled. This issue is now resolved.

Back to Top

 

FileCatalyst

FileCatalyst WorkFlow

Version 5.2.0 - Build 65

May 30, 2025

New Features

  • Added an option to replace CAPTCHA with a clickable button for ease of use for the recipients 'SHOWBUTTONINSTEADOFCAPTCHA' field is required

Fixes

  • Group FileArea Job submissions are failing when the FileArea path contains an underscore "_" character

  • LDAP Authenticated users are unable to access FileArea nor Job Submission and receive a "no protocol" error

Back to Top

 

Fortra

Endpoint Manager

May 19, 2025
Enhancements

  • When creating a rule in the Dynamic Groups Rule Builder, all values will be treated as case insensitive.

  • The Dynamic Groups Rule Builder field “Network Info Network Interfaces IP Address” only uses the operators Equals, Not Equals, In, and Not In. Valid formats for the values are IPv4 and IPv4 with CIDR notation.

Fixes

  • Refined list of fields in Dynamic Groups Rule Builder.

  • Resolved security vulnerabilities and minor bug fixes.

May 5, 2025
New Features

  • Dynamic Groups are now available. Dynamic Groups use rules to dynamically add endpoints to groups.

Enhancements

  • The endpoints drawer displays a `Time Zone:` entry if the selected endpoint has agent version 1.1.0.14 or higher installed.

Fixes

  • Resolved security vulnerabilities and minor bug fixes.

Fortra platform

May 15, 2025
New Features

  • Managed File Transfer FTB Integration solutions can now be provisioned.

Enhancements

  • An email is now sent when a user resets their OTP.

  • A previously dismissed banner will reappear upon login if it has been updated.

Fixes

  • Resolved security vulnerabilities and minor bug fixes.

Back to Top

 

Globalscape

EFT

v8.3.0

May 21, 2025

New Features

EFT Administration

  • Added support for disabling EFT administrators after a period of inactivity

  • Added support for multi-factor authentication (MFA) for EFT administrators

EFT Subscription Registration

  • Added support for manual registration with subscription licensing. Please work with our support team for assistance

REST API

  • Added support for REST API via DMZ Gateway

Web Admin Client (WAC)

  • Added ability to determine EFT site authentication type

Web Transfer Client (WTC)

  • Added support for Content Security Policy (CSP) Level 3 strict-dynamic

Enhancements

Administration

  • Updated EFT administration password policy defaults (new installs only)

  • Increased EFT administration password length policy defaults for PCI configurations

  • Enabled EFT administration password expiration by default (new installs only)

  • Added the EFT Event Rule Name to the Transfers as Client UI

  • Included EFT's Advanced Properties json file when in the Generate Support Bundle

  • Support for Windows Server 2025

ARM

  • Added LocalFileName and RemoteFileName to the tbl_actions table

  • Added link from table tbl_ClientOperations to the ActionID field

Automate Workflow Module (AWM)

  • Included an updated version of Automate v2024 (see bug fixes for more details)

Compression

  • Updated EFT's compression library used in event rules to v2024

Encryption

  • Updated encryption (data at rest) method in EFT 8.3, previous versions will not automatically upgrade to the new method. EFT administrators will need to remove previous encryption then re-enable encryption to use the new method

EFT Subscription Registration

  • Updated EFT Help>About to reflect the subscription renewal date rather than registered date. This is only applicable to newly registered modules (will not update upgraded systems).

Installer

  • Provided the ability to configure the App Data directory in the EFT installer

  • Updated the OLE SQL Driver to v19.3.5

  • EFT will now default MSMQ to Unicast (msmq-iterative) for new HA Active-Active installs

  • Replaced Azure Storage Client Library for C++ v7.5.0 with an updated Azure SDK

  • Included SQL 2022 Express with EFT installer for new installs (replaced SQL 2019 Express)

  • Removed EFT's help file bundled with installer. Help requests will launch your web browser (internet access required)

Logging

  • Added syslog to EFT's logger by default

OpenPGP

  • Updated OpenPGP library to v2024

OpenSSL

  • Updated Non-FIPS OpenSSL library to v3.4.1

OpenSSH

  • Updated OpenSSH library to v9.8.0

WTC

  • Updated Angular to v19

  • Implementation of OWASP's Anti-CSRF recommendations

  • Replaced Brandon Grotesque font with Google Roboto

  • Replaced the WTC title bar with the Fortra green color

Workspaces

  • Added the ability to set the default Expiration for Workspaces under Send tab

  • Added text displaying workspace expiration in Web Transfer Client (WTC)

Fixes

ARM

  • Fixed an issue where Negotiated Ciphers SSH report fails to display column for Fingerprint (outbound traffic)

  • Fixed an issue where Activity-by Users(Detailed) report would fail to properly log activity for accounts configured with multi-factor

  • Fixed an issue where Workspaces-Folders Shared did not include registration audits

  • Fixed an issue where some SSH ciphers were not displayed in the 'Troubleshooting-Negotiated SSH Ciphers' but were available in the database

  • Fixed an issue where the Admin GUI failed to refresh ARM reports

  • Fixed an issue with stored procedures when configured with an Oracle database

Automate Workflow Module (AWM)

  • Fixed an issue where editing a workflow remotely would fail to display the workflow contents (display would be blank)

  • Fixed an issue where defined Automate constants would not work with EFT tasks

  • Fixed an issue where Automate would fail to send emails when configured with "System"

  • Fixed an issue where Automate workflows that contained special characters such as # would fail to be converted to the v2024 version

  • Fixed an issue where Automate could crash when pressing the "Enter" key during a search with a large workflow

Connection Profile

  • Fixed an issue where new connection profiles were not properly saved when the password/username field contained < or > characters

  • Fixed an issue where files larger than 5MB would fail to properly upload when configured with Google Cloud Storage

Context Variables

  • Fixed an issue where HTTP.SignatureValid Context variable would not work in the PowerShell script for validation

EFT Administration

  • Fixed an issue where the EFT admin GUI would not properly reflect active sessions

  • Fixed an issue where Password Expiration Email Notifications would not be sent

  • Fixed an issue where Webservice URL is accessible even when disabled

  • Fixed an issue where EFT user accounts (clients) were provisioned when the username contained Windows reserved name formats

  • Fixed an issue where MX protocol warning message would be displayed when adding a whitelisted IP

  • Fixed an issue where DMZ fails to enable FTP client listener when only FTP is licensed

  • Fixed an issue where EFT would connect to DMZ Gateway over HTTP/s when the HTTP/s module was not licensed

  • Fixed an issue where the EFT service could crash when using a non-supported PCKS12 certificate/key while on FIPS mode

  • Fixed an issue where an expired SSL certificate on the site prevents the deletion of socket objects and after numerous FTPs Implicit connections could cause the EFT service to crash due to memory exhaustion

  • Fixed an issue where serial de-registration could cause a GUI crash

  • Fixed an issue where the FIPS mode enabled prompt would reference HTTPs even when SSL was not configured for FIPS

EFT Event Rules

  • Fixed an issue where an extra slash was listed on dataset when using wildcards

  • Fixed an issue where Timer Event Rules with SFTP download action would not recover after network reconnect (OS level network disconnect) without a service restart

  • Fixed an issue where 'IsDirectory' in dataset loop variable did not work

  • Fixed an issue where 'If else' statement could not be added inside a dataset loop

  • Fixed an issue where User Login Failed event rule against a user that no longer exists could crash the EFT server

Logging

  • Fixed an issue where EFT logs would report an OLE DB driver error

  • Fixed an issue where EFT logs would report an OLE DB provider error after visiting the Admin GUI experimental dashboard

  • Fixed an issue where PGP Self Decrypting Action results in an error description of "not determined" in the database

  • Fixed a typo in EFT log related to GSAWEMaxiumQueuedTaks Advanced Property

Outlook Add-in

  • Fixed an issue where EFT's Workspace outlook add-in did not have a properly listed publisher when being installed

REST API

  • Fixed an issue where new users could not be added to a different template via REST API

  • Fixed an issue where 'Assign to site(s)' field was missing in the request body for new admin-user rest endpoint

  • Fixed an issue where EFT Event Rules created via REST did not replicate in an HA cluster

  • Fixed an issue where POST requests for subroutines would fail with missing trigger error

  • Fixed an issue where an EFT site created via REST did not replicate in an HA cluster

  • Fixed an issue where REST API would allow the creation of an EFT site with special characters

Remote Agent

  • Fixed an issue where Remote Agents would fail to connect via SFTP using legacy ciphers

  • Fixed an issue where Remote Agents fail to auto update

  • Fixed an issue where Remote Agents fail to retain special characters in file names when using the HTTPs protocol

  • Fixed an issue where the 'Remove' and 'Pause' buttons were not properly displayed after the GUI is resized

SFTP (SSH)

  • Fixed an issue where under immediate load (3k+ connections within a minute) and long running Automate workflow tasks could cause increased memory usage which could lead to a service crash due to memory exhaustion

SMTP

  • Fixed an issue where SMTP connections were not being properly closed (connection would eventually timeout)

Web Admin Client

  • Fixed an issue where user status field was not displayed in the User Management UI

  • Fixed an issue where WAC would not disable certain administrative actions for AD user accounts

Workspaces

  • Fixed an issue where an email verification link would break if the workspace owner username contained special characters

WTC

  • Fixed an issue where the WTC would report an error in the console while enabling developer tools (no side effects where experienced with the error)

  • Fixed an issue where selecting the "In-Progress" option would cause a file re-download

  • Fixed an issue where the WTC timeout was not working as expected when the browser was minimized

v8.2.1.37

May 21, 2025

New Features

EFT Administration

  • Added support for manual registration with subscription licensing. Please work with our support team for assistance

Enhancements

EFT Subscription Registration

  • Updated EFT Help>About to reflect the subscription renewal date rather than registered date. This is only applicable to newly registered modules (will not update upgraded systems).

Back to Top

 

Powertech

Antivirus

Version 6.4

May 22, 2025

New Features

  • Support for Red Hat Enterprise Linux/CentOS 7 has been withdrawn.

  • Support for Red Hat Enterprise Linux 9 has been added.

  • A new report type "Threat Report" has been added to show virus found events.

  • Support of Office 365 email authentication for sending report emails has been added.

  • Role based access control has been added, which allows defining user permissions.

  • Support for Dark Mode has been added to the Powertech Antivirus User Interface.

  • The Home screen has been updated.

Enhancements

  • Improved install error messages to reduce confusion between server initialization and application registration.

  • Added the ‘--iagreetothetermsoftheattachedlicense’ flag for silent install, which signifies that the user explicitly agrees to the terms of the attached license.

  • The Java runtime environment has been upgraded to 17.0.14.

  • PostgreSQL has been upgraded to 13.20.

  • Apache Tomcat has been upgraded to 10.1.39.

  • Flyway database migration tool has been upgraded to 11.6.0.

  • Other various library upgrades have been made to address vulnerabilities.

  • HelpSystems One has been rebranded as Fortra Application Hub.

Fixes

  • Installation has been fixed to run as expected in an environment where the su command requires a password.

  • The "Could not get database credentials." error, sometimes generated during server start-up has been fixed.

Authority Broker for IBM i

Version 4.25

May 14, 2025

New Features

  • Authority Broker now supports sending the screen captures PDF to an IFS directory.

Enhancements

  • The End User License Agreement (EULA) has been updated.

Fixes

  • An issue printing the FireCall Log has been resolved.

  • An issue where the Event Report was not writing to the requested Directory File has been resolved.

BoKS Manager

Version 9.0 (version update)

May 22, 2025

Server s-9.0.0.1
New Features

  • certinfo improved support for certificate extensions.

Updates

  • The BoKS Integrity Check has been deprecated.

Fixes

  • Master and servc services could prematurely discard requests.

  • Certain bccasd operations could block indefinitely.

  • Running crldownload_ldap with debug level >= 5 coredumps.

  • Some calls to boks_master were not mutex protected.

  • CRL URLs are now URL encoded.

  • Stop password hashes from appearing in monitoring files.

  • bccasd should not use wildcard matching when not intended.

  • bccasd got internal error when renaming to same name.

  • Make the idle timeout in boks_portmux configurable.

  • Log the BoKS DB initialization time to the boks_errlog file.

  • pgrpadmin -d and -s is now much faster.

Client c-9.0.0.1
New Features

  • Optional logging of SSHD KEX parameters.

  • Make the time interval for adjoin autoupdate to create a new key configurable.

  • Added Ubuntu 24 x64 support.

Updates

  • The BoKS Integrity Check has been deprecated.

Fixes

  • adjoin autoupdate failed due to permitted_enctypes.

  • adjoin join a second time would core dump if host was disabled in AD.

  • Ensure boks_init is not started twice.

  • Updated information in boksinfo.

  • showmaster printed misleading error message with ports out of range.

  • Missing radius features: nas-identifier and Message-Authenticator.

SSH Package boks-ssh-9.7.1.1
New Features

  • Added optional logging of SSHD KEX parameters.

  • Added BoKS SSH server log host key algorithm.

Updates

  • OpenSSH client and server vulnerable for DOS attack (CVE-2025-26466) – fix included.

  • SSH machine-in-the-middle attack if VerifyHostKeyDNS option enabled (CVE-2025-26465) – fix included.

BoKS Manager

Version 8.1 (version update)

May 15, 2025

Server s-8.1.0.16
New Features

  • certinfo improved support for certificate extensions.

Fixes

  • Master and servc services could prematurely discard valid client requests from the queue due to short timeouts.

  • Certain bccasd operations could block indefinitely, preventing subsequent WSI calls.

  • boks_keytabmd could enter infinite loop generating new password.

  • Running crldownload_ldap with debug level >= 5 coredumps.

  • Stop password hashes from appearing in monitoring files.

  • pgrpadmin -d and -s are now considerably faster.

Version 8.1 (version update)

May 9, 2025

Client c-8.1.0.22
New Features

  • Added optional logging of SSHD KEX parameters.

  • BoKS SSHD uses the new audit logging interface.

Updates

  • SSH machine-in-the-middle attack if VerifyHostKeyDNS option enabled (CVE-2025-26465).

Fixes

  • adjoin autoupdate failed if first entry in permitted_enctypes was not allowed by Active Directory.

  • Service user keytab file could be created outside the configured keytab/directory.

  • boksedit and sudoedit will tell who else is editing the same file.

  • Ensure boks_init is not started twice.

  • Updated information in boksinfo.

Back to Top

 

Terranova Security

Version: 1.113.1

May 13, 2025

Fixes

  • There was an issue where embedded images in the email phishing templates appeared as attachments instead of displaying within the body of the email. This issue has been resolved.

Version: 1.113.2

May 28, 2025

Fixes

  • A bug caused clients to lose their Phish Submitter add-in access when renewing their licenses. This issue has been resolved.

  • The search function on the License History and License Summary pages was not working correctly. This issue has been resolved.

Back to Top

 

Titus

DCS for Windows

Version 6.0

May 15, 2025

IMPORTANT: DCS for Windows 6.0 release supports Windows 10, Office 2016 and Office 2019 which are going out of Extended Support by Microsoft in October 2025. Our policy is not to support Microsoft products that are out of extended support with new releases.
New Features

  • Added support for targeting configurations to Microsoft Entra ID users and groups in cloud environments.

  • Added new options to install DCS for Windows with support for Microsoft Entra ID and Microsoft Information Protection.

  • Added support for additional configuration options for the Classification Preview Bar and the Classification Information Bar. If you are using the DCS Policy Manager, configure these options in App Settings. See Policy Manager documentation. If you are using the DCS Administration Console, you can use registry keys. See the Data Classification Suite for Windows Deployment Guide. The following options are supported:

    • Enabling/disabling showing the color associated with the selected classification.

    • Defining classification selection format and no classification text.

    • Enabling/disabling option to allow users to close the Classification Information Bar in Microsoft Office applications. You can configure the default display text that users click to show the bar after it has been closed.

  • Added support for showing Favorites in the Ribbon. If you are using the DCS Policy Manager, configure these options in App Settings. See Policy Manager documentation. If you are using the DCS Administration Console, you can use registry keys. See the Data Classification Suite for Windows Deployment Guide.

  • Added support for new CAD Embedded Metadata Adapter. Supported file extensions are .dwg and .dxf files for 2013 and later versions. Pre-2013 formatted .dwg and .dxf files are not supported.

  • Added support for configuring Content Validation Profiles in the DCS Policy Manager.

Enhancements

  • Confirmed support for Microsoft Office 2024.

  • Removed Log Collector feature.

  • Updated Fortra Titus logo to a Fortra Data Classification logo in dialogs.

  • Updated DecodedMetadata property to separate fields using a carriage return.

Fixes

  • Fixed issue with duplicate headers and footers.

  • Fixed issue with visual marking configurations not working as expected for headers, footers, and body tags.

  • Fixed issue with Fortra DCS tab being visible in inline replies.

  • Fixed issue with visual markings being duplicated in the footer of PowerPoint slides. This happened when copying a slide with visual markings from one presentation to another and using the "Use Source Formatting" paste option. When the PowerPoint with the copied information was saved, the visual markings were duplicated.

  • Fixed issue with text extraction related to CSV files.

  • Fixed issue with PDF/A being broken by PDF Keywords plug-in.

  • Fixed issue where mandatory fields associated with field condition selections did not always appear.

  • Fixed issue with the client trying to reach a multicast address.

  • Fixed issue with users being unable to copy text shown in policy alert dialogs.

  • Fixed issue with meeting invites losing original classification of an email when meeting invite is created with an in-line message.

  • Fixed issue with appointment/meeting item exception caused by BodyFormat property.

  • Fixed issue with recipient alert not showing the list of recipients that failed a policy check.

  • Fixed issue with AbandonedMutexException occurring when DCS for Windows is trying to read/write the UserSettings file from a Roaming Profile.

  • Fixed issue with response messages not retaining temporary MAPI properties when operating in online mode.

  • Fixed issue with classification metadata applied to a meeting invite not appearing when a user declines the invite.

  • Fixed issue with high memory consumption in virtual servers.

  • Added additional protection to the UserSettings file to prevent I/O exceptions when file in use by multiple DCS end points.

  • Fixed issues where third-party screen reader software was not properly reading configured DCS for Windows information:

    • HTML description content

    • Alert description content

    • Favorites

  • Policy Alert UI not handling resizing correctly when button captions contained large amounts of text.

Back to Top