Monthly Release Notes - January 2026

Jump to:

Agari Alert Logic Automate Beyond Security
Boldon James Bytware CCSS Clearswift
Cobalt Strike Core Security Digital Defense Digital Guardian
Document Management FileCatalyst Fortra Fortra Application Hub
Fortra VM Globalscape GoAnywhere Halcyon
IBM Partnership Insite InterMapper Outflank Security Tooling
Powertech Robot Safestone Sequel
Showcase Tango/04 TeamQuest Terranova Security  
Titus Vera

 

Alert Logic

Managed Web Application Firewall (WAF)
Version 5.2.4.3-3191

January 6, 2026

Features

  • Allow custom IP lists to be downloaded.

Fixes

  • Resolved issue with custom IP list syncing.

  • Resolved conflicts among custom IP lists assigned to different control groups.

  • Removed any stale /etc/hosts entries on upgrade.

  • Resolved a deadlock issue affecting Inter Cluster Management.

Back to Top

 

Digital Guardian

Version: 11.0.0

January, 2026

New Features

  • With this release, the agent now supports DCS label integration within policy rules. This feature enables the DG agent to:

    • Read DCS metadata from files.

    • Convert that metadata into Digital Guardian policy tags for rule evaluation.

    • Write DCS classification data back to the file’s Alternate Data Stream (ADS), ensuring consistent labeling and enforcement across the environment.

    This enhancement improves interoperability between Data Classification and DLP components, reduces manual configuration, and ensures consistent enforcement of classification policies across the environment.

    NOTE: DCS integration requires Fortra DLP Windows Agent v11.0.0 or later, .NET 8 (ARM64 and x64 on ARM devices), and DGMC v9.1.0.

  • The performance of unzipping archives has been significantly improved. As part of this improvement, the extensionsNotToClassifyconfiguration option now has an internal default list of extensions: exe, dll, sys, bin, com, obj, lib, iso, img, vhd, vhdx, class, pdb, dmp

    Users can now customize this setting in two ways:

    • Expand the list: The user must provide internal extensions along with any additional extensions they want to add.

    • Replace the list: The user provides only the new extensions, which will override the internal default list.

    This update helps reduce unnecessary classification operations during archive extraction, improving overall performance.

  • The DG Agent for Windows now supports ADE in the new Outlook and new Teams apps. Clipboard actions in these applications are fully evaluated by the rule engine, so ADE policies can correctly block or allow these actions as configured.

  • For the ACI, the existing OpenText EDK third-party libraries are upgraded to version 25.4. This upgrade supports security vulnerabilities and improves the overall ACI performance.

Fixes

  • Resolved an issue that caused inconsistent handling of non-ASCII uppercase characters in path names. DG will continue to treat file names as case-insensitive, and this update improves consistency across different event file paths. Additional refinements will follow in future releases.

  • Resolved an issue with intermittent connection failures due to DGWIP creating unnecessary extra connection to the proxy. The fix prevents extra connections, reducing load on the proxy and improving connection stability.

  • Resolved an issue where sample match data was not displaying Chinese characters correctly.

  • Resolved an issue where the DG agent failed to apply MIP labels as a control rule action and blocked file operations when Evidence Manager was not configured but MIP is enabled.

  • Resolved an issue where GOAWAY message from certain websites caused 502 errors. The fix allows DGWIP to handle GOAWAY message by closing the connection without triggering 502 errors.

  • Resolved an issue where a rule did not trigger during FileOpen events when the destination file did not exist in the context.

  • Resolved an issue where bundle processing was interrupted due to missed heartbeats.

  • Resolved an issue where DGWIP created extra temporary connections when an explicit proxy was configured, reducing unnecessary resource usage.

  • Resolved an issue where the agent failed to apply MIP labels from DG control policies when used with ARC Lite, ensuring that labeling actions now function as expected.

  • Resolved an issue where the agent did not consistently normalize non-ASCII uppercase and lowercase characters in file paths during NTU event and control policy evaluation, ensuring accurate and uniform filename handling across all operation types.

  • Resolved an issue where Chinese characters appeared garbled in Sample Match results on Windows 10 and 11.

  • Resolved an issue where a race condition prevented the agent from upgrading through DGMC.

  • Resolved an issue where the windows agent did not properly handle web server responses containing an HTTP/2 GOAWAY message.

Refer to the Critical Notices section of the DG Agent for Windows 11.0.0 Release Notes on the Fortra Support Portal for details on the legacy file system driver deprecation.

Back to Top

 

Document Management (RJS)

Webdocs Forms Management

Version: 11.0.15

January 13, 2026

Fixes

  • Updated startup sequence to no longer allow Tika to execute to eliminate possibility of exploit CVE-2025-66516.

  • Removed Tika extractor from Solr installation to eliminate possibility of exploit CVE-2025-66516.

Back to Top

 

Fortra

Fortra VM

Version 7.0.7.10

January 14, 2026

Enhancements

  • Added a new RNA GUI with updated Fortra branding. Existing RNAs will be updated to the new GUI upon the following scan.

  • RNA v5.0 is available for download and deployment (on the Appliance tokens tab, under Scan Settings > Scanners). Existing RNAs running version 4.0 will be updated to 5.0 in the coming months.

Back to Top

 

Powertech

BoKS Manager

Version 8.1 (version update)

January 20, 2026

Server s-8.1.0.20
New Features

  • Added support for using wildcard * as a program group member in sudo access rules.

Fixes

  • Added missing tls/ecgroups definition.

  • boks_bccasd: Reduced memory footprint and swap usage.

  • Fixed potential deadlock in boks_brproxyrd.

  • servm.slow monitoring file fixes.

  • Very long distinguished names were truncated in AD tree listing.

  • boksrule accepted ANY/* as source for non-host rules.

Back to Top

 

Terranova Security

Version: 1.120

January 14, 2026

Enhancements

  • The platform's Learning Zone has been updated to comply with WCAG 2.2 AA standards, ensuring better accessibility for all users.

Version: 1.121

January 21, 2026

Fixes

  • The User List download error was caused by hidden control characters entered in certain fields, which corrupted the Excel export. This issue has been resolved by blocking these characters in key fields and adding trimming and cleanup during export, ensuring the User List now opens correctly.

  • Some users encountered platform exception errors when trying to access certain quizzes. This was caused by a conflict between the quiz’s Allow Repetition setting and an admin‑updated user status. The issue has been resolved, and quizzes can now be accessed normally.

  • A user assigned the role of Catalog Viewer was unable to preview any content in the ContentHub and required a custom role with permission to preview content. This issue has been resolved, and content can be previewed as expected.

  • When users downloaded the full list of excluded IP ranges, the file did not show the correct end IP for any excluded range and displayed each range as a single IP. This resulted in users seeing incomplete information about the exclusion ranges. This issue has been resolved, and now the file correctly displays the full IP range that is excluded.

  • An issue caused by a recent code change that altered Learning Zone colors and caused UI elements to become misaligned has been resolved by reverting the change and restoring proper accessibility and layout.

Back to Top

 

Titus

DCS Administration Console

Version 6.0.3

January 13, 2026

Fixes
  • Fixed the Dynamic Value Provider feature.

DCS for Data at Rest (DaR)

Version 7.0

January 20, 2026

IMPORTANT:

This release of DCS for DaR only supports TCPG Configuration files that are published in the SaaS or customer-hosted version of DCS Policy Manager. For more information on how to import and export Configuration files and author new Configurations, see the DCS Policy Manager documentation.

 

If you are still using the DCS Administration Console with DCS for Windows, you must install DCS for DaR 5.0 or an earlier version.

New Features

  • You can now perform Fileshare Discovery Scans to discover files in shared folders and subfolders. This feature helps you get started with your Fileshare Content Scans.

    • You can only perform a Fileshare Discovery Scan on a server that is in your network.

    • You cannot perform a Fileshare Discovery Scan on files located in an AWS S3 bucket. For this repository, you must create a Fileshare Content Scan from scratch.

  • For Fileshare repositories, you can now import third-party data and set classification values based on the information contained in a CSV file. Configuration is required in DCS Policy Manager (Schema Mapping) and DCS for DaR (Import Scans). Related changes include:

    • Added Ti.Import, Ti.ImportErrorLog, and Ti.ImportScan tables for Import Scans data.

    • In the Ti.FileMetadata table, there is a new FK_ImportId field, and MetadataSourceField will record imported events with an 'I' entry.

  • Added new Ti.ScanAudit and Ti.ScanAuditType database tables to store records every time a scan is created, edited, or deleted. Audit events are not recorded if using an XML file and command line parameters to run a scan.

  • Added support for the "Set custom property" action in DCS Policy Manager that adds or modifies a custom property for files during a DCS for DaR scan.

  • Added support for DCS for DaR interoperability with Classifier Suite. This feature enables DCS for DaR to write matching DCS and Classifier Suite labels to files when a Content Scan detects at least one of these labels.

  • DCS for DaR Microsoft Sensitivity Label Interoperability now supports GCC High environments. Updates include:

    • The Titus_FolderScan.exe.config file includes a new “CloudInstance” setting. For more information, see Data Classification Suite for Data at Rest Working with Microsoft Sensitivity Labels.

    • For SharePoint and OneDrive users, specify URLs for “Office365AuthenticationUrl” and “Office365DiscoveryUrl” in the web.config and commonappsettings.config files. The “Office365DiscoveryUrl” setting is new in this release. For more information, see the user guide for this repository.

Enhancements
  • Confirmed support for Microsoft Windows Server 2025.
  • To set the maximum number of scanner processes that can run concurrently in a single scan, configure "Maximum scanner processes" for Content Scans (under Advanced Settings). The “MaxParallelProcesses" setting in the commonappsettings.config file has been removed.

  • Changed the following DCS for DaR setting names to clarify purpose:

    • "SQL Server timeout" setting name changed to "Database Command timeout"

    • "IIS timeout" setting name changed to "Http client timeout"

Fixes
  • Fixed issue with errors appearing when trying to see the results of a SharePoint Online Discovery Scan.
  • Fixed issue with Content Scans failing on SharePoint Online sites because the scan user was not the site owner. The fix for this issue involves temporarily adding the scan user as a site owner while the site is being scanned.
  • Improved the process that allows other DCS for DaR servers to join a running scan.
Considerations

  • The latest version of DCS Policy Manager (Customer-hosted) supports custom actions. This includes the option to use the Fortra-defined DDE Server Response custom action.

    NOTE: Only DCS Policy Manager (Customer-hosted) supports custom actions, which are not available in DCS Policy Manager (SaaS).

  • Vera integration is not supported in any DCS Policy Manager platform.

  • For copy and move actions for SharePoint, DCS for DaR requires a full path for the "Destination" parameter. DCS for DaR allowed relative paths prior to the 6.0 release, but this is unreliable. Confirm you are providing the full path if you configured these actions for SharePoint scans. You can find the full path in the "Details" of a SharePoint folder or file.

DCS Policy Manager (SaaS)

Version 2025.10.1

January 23, 2026

Fixes

  • Renewed cloud certificates for the DCS Console.

Back to Top