Monthly Release Notes - March 2026

Jump to:

Agari Alert Logic Automate Beyond Security
Boldon James Bytware CCSS Clearswift
Cloud Data Protection Cobalt Strike Core Security Digital Defense
Digital Guardian Document Management FileCatalyst Fortra
Fortra Application Hub Globalscape GoAnywhere Halcyon
IBM Partnership Insite InterMapper Outflank Security Tooling
Powertech Robot Safestone Sequel
Showcase Tango/04 TeamQuest Human Risk Management (prior Terranova Security)
Titus Tripwire Secure Collaboration (Vera)

 

Digital Guardian

Agent for Windows

Version: 11.0.1

March, 2026

New Features

  • Enhanced input validation for mandatory justification fields. When a justification is required, the system now rejects submissions that contain only whitespace. Users must provide a valid, non-empty response.

  • DG Agent improves performance by skipping inspection for resources loaded from known advertising-related domains. This is achieved by incorporating an extended list of advertising domains into the domainflags.txt file. As a result, processing overhead is reduced and performance is improved when loading websites that display ads.

  • Improved Office 365 online performance by updating the domain skip list to reduce NTU buffer inspections during OneDrive document editing. For more information on Domain Flags File Changes, refer to the Resource File Changes section in the DG Agent for Windows 11.0.1 Release Notes available at Fortra Support Portal.

  • To improve performance on telemetry-heavy websites, a new Lua-based skip mechanism is introduced to bypass NTU buffer inspection for telemetry-related requests.

    A new skip.lua script sets the request action to ignore when both the following conditions are met:

    • The request method is POST or PUT

    • The request Content-Type is JSON

    The lua.json configuration was updated to invoke skip.lua when telemetry traffic is identified based on domain name or URL path, such as:

    • Domain name contains keyword such as “telemetry“, “collector“ or “metrics“.

    • URL path contains keywords such as “/log“, “/logger“, “/*telemetry“ or “/*collector“.

    This enhancement reduces processing overhead and improves performance for telemetry-heavy websites. For configuration details, refer to the Resource File Changes section in the DG Agent for Windows 11.0.1 Release Notes, available at Fortra Support Portal.

Fixes

  • In earlier DG Agent versions (8.2, 9.4.x, and 10.1.0.0036), systems running with FIPS enabled failed to generate the encryption key required for Secure IOCTL. As a result, all Secure IOCTL calls returned ACCESS_DENY errors, which caused random application failures, including print failures on Windows 11. The agent also generated excessive Secure IOCTL log entries and corresponding OpAlerts in DGMC.

    This issue is now resolved in version 11.0.1. When FIPS is enabled and the agent cannot generate the encryption key, the agent automatically disables Secure IOCTL enforcement and stops sending Secure IOCTL control messages to the system driver. This prevents application failures and eliminates unnecessary log and alert noise.

    Secure IOCTL is automatically disabled only when FIPS mode is active and key generation fails. This behavior is controlled by the existing enableFIPS configuration setting.

  • Resolved an issue where File Extract events were not generated when users extracted ZIP files using the Windows “Extract All” option.

  • Added a configuration option to control the number of CPUs used by DGWIP. The default value is 1, with further performance enhancements planned.

  • Improved DGWIP performance by enhancing RSA key generation and management, resulting in faster webpage load times.

  • Resolved an issue that caused the DGAgent process to crash due to an unhandled exception.

  • Resolved an issue where directory control filtering did not work when the MIP integrated feature was disabled.

  • Resolved an issue where paste actions were blocked by a lower-priority rule, even when a higher-priority rule allowed the action.

For information on known issues in this or previous releases, see the Known Issues section of the DG Agent for Windows 11.0.1 Release Notes available at Fortra Support Portal.

Back to Top

 

Fortra

Fortra platform

March 20, 2026
New Features

  • Added new Branding options that allow the Fortra platform’s Log In page and top toolbar to be customized with colors and logos to match a company’s brand.

Enhancements

  • Added a default “Administrator - Platform” entry on the Groups and Roles pages in Platform Manager for customers who do not already have an admin-based group or role.

Surveyor/400

Version 4.4.0

March 17, 2026

Enhancements

  • Upgraded Excel POI from 3.1.0 to 5.4.1

  • Upgraded Xerces from 2.11.0 to 2.12.2

  • Upgraded JT400 from 9.8 to 21.0.5

  • Added JAXB jar files to be compatible with Java 11 and higher.

  • Install and Update library now uses IFS instead of FTP for save file transfer.

  • Updated Server 4.1.4

    • Classpath changes for new jar files.

    • Rebranded HelpSystems to Fortra.

    • Fixed JAVAVER parameter to work with modern Java versions.

    • FTP - IBM i - Allows for password with spaces.

  • Updated UI

    • Progress bar border, IFS transfers and Install/Update

    • Does not show cursor in selectable labels

    • Fixed some selectable text in selectable labels being cut off in beginning.

    • Added right-click copy and export options to file Format tab

    • Updated target releases on FTP IBMi advanced.

    • TN5250 preferences - Added recommended fonts including Lucida Typewriter.

    • TN5250 - Improved Print appearance.

  • Disconnect - Improved logic when connection is lost.

  • TN5250 - Now Ignores the Windows key press.

  • Custom Command - Added Remove Directory command.

  • Custom Command - Fixed prompt dialog appearing behind Add/Edit dialog.

  • Sign on - Now allows additional factor.

Fixes

  • Export - database - command line. Fixed issue with Destination system not loading correctly.

  • Export Wizard - custom query - Fixed 'Source query has changed' error due to trimming.

  • SQL Editor - Improved multi-line syntax highlighting logic.

  • SQL Search - Fixed missing Tables view error.

  • EXPDTA - Added missing text qualifier as needed parameter.

  • File Editor - Fixed issue where export date fields failed with low or high values such as 0001-01-01 or 9999-12-31.

  • TN5250 - Fixed screen restore not working after two save screen operations.

  • TN5250 - Fixed inability to save macro.

Fortra VM

Version 7.0.8.1

March 30, 2026

Fixes

  • Removed outdated CIS Benchmark reports

  • Fortra VM target port ranges were not displayed as expected in reports

  • Some scans were initiating unexpectedly

  • Scans with scan blocks including offline RNAs failed to transition states properly

  • Active Risk toggle was not using correct Threat Rank values for export report

  • PCI Compliance report was failing to load scope, unable to create report

Version 7.0.8.0

March 21, 2026

New Features

  • Enhanced Offline RNA (Scanner) Notifications

    • The Scanner Offline notification is now enabled by default and has been refined to alert for only the internal RNAs you manage. Fortra‑managed external RNAs have been removed from this notification, helping reduce noise so you can stay focused on your own environment. We recommend keeping this notification turned ON so you can respond quickly if a scanner goes offline. You can update this setting anytime by navigating from the left navigation menu to Account > My Profile > Notifications.

  • CPE-based potential vulnerabilities added for network-based vulnerability scanning

    • Previously available only for PCI-ASV vulnerability scans, Common Platform Enumeration (CPE) based vulnerability checks are now included in all network-based vulnerability scans with Potentials toggled on, including the Full Scan policy. This provides earlier, more comprehensive signals about potential exposure through software fingerprinting and CPE mappings.

Enhancements

  • Updated Scanner Offline notification

  • Reports: Improved report generation speed for reports that include vulnerability dictionary information

  • CPE potential vulnerabilities are now included in potential vulnerability checks for non-PCI-ASV VM scanning

  • Improved reliability of NIST data pulls

Fixes

  • Infrastructure updates for Fortra VM EC2s

  • Updated "Frontline" to "Fortra VM" in scan status detail messages

  • Updated account deactivation settings so that scanner removal occurs on deletion rather than deactivation

  • Updated logic in Business Groups to prevent loss of visibility of items if the assigned business group is deleted

  • Error occurring when cloning reports or scan groups with a long name

  • Dark mode UI readability fixes

  • Multi-scan stuck at 'scheduled' when RNA offline

  • Fixed Vulnerabilities (that have recurred) report incorrect days to remediate

  • Text in Acceptable Risk modal is missing spaces

  • Vulnerability Remediation Plan Report not showing Vulnerability Dictionary

  • Errors autogenerating reports in scan groups

  • Error downloading release notes in the Switzerland (CH) region

  • Vulnerabilities list fails to populate in Active View “Show all instances” mode

  • Fixed vulnerabilities report shows incorrect data

  • Normalized inclusions/exclusions of info-level vulnerabilities in Vulnerability Details CSV report

  • Active View rescan now defaults to the Network Scan Without Potentials scan policy instead of Full Scan

  • Prevented PCI attestation reports from being generated for WAS scans without a matching VM scan

Back to Top

 

Globalscape

DMZ Gateway

Version 4.1.0.88

March 16, 2026

Enhancements

  • Added support for Windows Server 2025

  • Updated various third-party libraries

  • Updated OpenJDK to the latest version, 25.0.2, for both Windows and Linux Gateways

  • Updated the DMZ Help Contents to point to our online help file

EFT

Version 8.3.2.568

March 4, 2026

Fixes

EFT Administration

  • Patched CVE-2025-15467 by upgrading EFT's OpenSSL library to v3.6.1

  • Fixed an issue where the subject line for certain email notifications would be overwritten with context variables

  • Fixed an issue where incorrect email reminders were sent for expiring SSL certificates

Version 8.3.0.412

March 4, 2026

Fixes

EFT Administration

  • Patched CVE-2025-15467 by upgrading EFT's OpenSSL library to v3.6.1

  • Fixed an issue where incorrect email reminders were sent for expiring SSL certificates

Version 8.2.1.408

March 4, 2026

Fixes

EFT Administration

  • Patched CVE-2025-15467 by upgrading EFT's OpenSSL library to v3.6.1

Back to Top

 

IBM Partnership

Backup, Recovery, and Media Services (BRMS)

Product 5770-BR2 Version: PTF 7.6 SJ08460, 7.5 SJ08459, 7.4 SJ08458

March, 2026

Enhancements

  • BRMS web interface has been enhanced to provide action support for control group management, initial backup history management and table export capability. See the BRMS wiki for more information at https://ibm.biz/brms-enhancements.

Fixes

In version 7.4 and later:

  • Fixed issue where duplicating encrypted media using DUPMEDBRM it is unexpectedly slower than duplicating unencrypted media to an output volume using an encrypted media policy.

  • Fixed issue where full system flash copy reports messages MSGCPD3C32 and MSGCPF3756 when restoring QUSRBRM on the source system.

Back to Top

 

Powertech

BoKS Manager

Version 8.1

March 30, 2026

Client c-8.1.0.28
NOTE:

This package requires that BoKS SELinux package 1.21 is also installed.

Updates

  • BoKS OpenSSL version upgraded to 3.5.5 (CVE-2025-11187, CVE-2025-15468, CVE-2025-66199, CVE-2025-69420, CVE-2025-69421, CVE-2026-22795).

Fixes

  • boksinfo hangs when the database is locked.

  • Compatibility with Radius servers that accept empty passwords.

  • BoKS SElinux install fails on RHEL9 and RHEL10.

Version 8.1

March 30, 2026

Server s-8.1.0.21
NOTE:

This package requires that BoKS SELinux package 1.21 is also installed.

Updates

  • BoKS OpenSSL version upgraded to 3.5.5 (CVE-2025-11187, CVE-2025-15468, CVE-2025-66199, CVE-2025-69420, CVE-2025-69421, CVE-2026-22795).

Version 9.0

March 4, 2026

Client c-9.0.0.5
NOTE:

This package requires that BoKS SELinux package 1.21 is also installed.

Updates

  • BoKS OpenSSL version upgraded to 3.5.5 (CVE-2025-11187, CVE-2025-15468, CVE-2025-66199, CVE-2025-69420, CVE-2025-69421, CVE-2026-22795).

  • Server Agent reports 4-digit version number.

Fixes

  • BoKS SElinux install fails on RHEL9 and RHEL10.

Back to Top

 

Human Risk Management (prior Terranova Security)

Version: 1.125

March 26, 2026

Enhancements

  • An option to include users has been added to course widgets to define how user counts are calculated when multiple courses are selected. The option supports the addition of users that participated in all selected courses or users that participated in at least one selected course. This update applies to the Course Result, Course Performance, Course Completion, Course Progress, and Course Completion Over Time widgets.

  • Several course reports have been updated to improve how user totals are calculated when multiple courses are selected. A new total line has been added where applicable to correctly reflect users enrolled in all selected courses. These updates apply to Course Progress, Course Results, Course Details, and related status reports, providing more accurate and consistent totals across reports.

Fixes

  • An issue in the Course Progression widget caused the user totals to decrease when additional courses were added, and in some cases displayed a negative number for users who had not completed the courses. This issue has been fixed, and the widget now shows the correct user counts for completed and not completed courses.

  • An issue caused the Course Progress and Course Results widgets to display user counts even when no users met the selected criteria, leading to inconsistent data. This issue has been fixed, and the widgets now correctly display empty results and consistent counts when no users qualify.

Version: 1.124

March 12, 2026

Enhancements

  • Reports that list activities now include a new column displaying each activity’s alpha-numeric code, making it easier to identify and group activities.

  • Immediate Remediation email templates have been updated to support the Course URL tag, which is now available under the Tags option.

Fixes

  • Sending a Course Status by User report from the Email Center failed with an error, preventing managers from receiving the email. This happened regardless of the courses or columns included in the report. The issue has been fixed, and now reports can be sent successfully without errors.

  • A hidden link was visible and clickable in simulation emails when opened in older versions of Outlook, which led to an empty page and triggered false‑positive events. This issue has been fixed, and the link is no longer visible or clickable.

  • Embedded images did not display correctly in simulation emails sent via Outlook DMI, causing broken images or red X icons to appear. As a result, recipients could not view embedded images, while non‑embedded images continued to work and Gmail DMI was unaffected. This issue has been fixed, and embedded images now display correctly in Outlook DMI emails.

  • Content that was not available in the platform’s language could still be published and launched, causing users to encounter a page‑not‑found error when starting the course. This issue has been fixed, and content can no longer be published unless it is available in the platform’s language.

  • An issue caused the manager count to display as zero when sending progress report emails, even though the emails were successfully delivered to managers. This issue has been fixed, and the manager count now correctly reflects the number of managers associated with the selected course.

  • A typo in the Role section (FR‑FR) has been corrected.

  • A typo in the User Profile section (ES‑LATM) has been corrected.

There are currently no updates.

Back to Top

 

Titus

DCS Policy Manager (SaaS)

Version 2026.03

March 27, 2026

New Features

  • For DCS One:

    • Added App Settings (under DCS Audit Settings) to support DCS One sending events and properties to the Fortra DLP Analytics and Reporting audit logger.

      NOTE: DCS for Windows will support the Fortra DLP Analytics and Reporting audit logger in a future release.

  • For DCS for Windows:

    • Added “Documents > On check policy” policy event that occurs when a user clicks the “Check Policy” button in a document. To use this feature, you must enable two different App Settings. You must enable the button in the “Check Policy Settings” group, and you must enable the Options Ribbon in the “Ribbon Settings” group.

    • Added “Documents > On save and send” policy event that occurs before any open document is shared by email using Microsoft Office.

    • Added “Password-protect Office attachments” action. This action enforces the password protection of Microsoft Office documents (.xlsx, .pptx, and .docx) that a user attaches to an email message.

    • Added “Classifier Interoperability” App Settings (under Metadata Handlers) that enables DCS for Windows to read or read/write Classifier labels. There is also a setting to enable DCS for Windows to remove Classifier visual markings the first time a user changes the classification, opens a document, or saves a document.

    • Added “Message.OriginalUserProperty.<PropertyName>” and “Message.UserProperty.<PropertyName>” properties. The value of the named property can be a MAPI property, user property, or X-header.

      NOTE: “Message.UserProperty.<PropertyName>” is available for all supported email policy events in DCS Policy Manager. “Message.OriginalUserProperty.<PropertyName>” is not available for the “Email > On open” policy event.
Fixes

  • Fixed issue with credit card numbers not being detected for the Content Validation Profiles feature. By default, DCS Policy Manager now enables the “Use Luhn algorithm” option for the following Predefined Matches:

    • Canada - Social Insurance Number

    • Credit Card - American Express

    • Credit Card - Diners Club

    • Credit Card - Japan Credit Bureau

    • Credit Card - MasterCard

    • Credit Card - Visa

Back to Top

 

There are currently no updates.

Back to Top

 

Secure Collaboration (Vera)

Version 3.25.1

March 2026

Enhancements

  • Vera SaaS

    • Support for SharePoint Online shares using an on-prem connector with a customer-managed Azure app (Entra app registration) and Azure app authentication flow.

    • Clone-access actions for Users and Groups now run asynchronously in the background. Users no longer need to remain on the same page while the operation completes.

Fixes

  • Important Update to the Vera SaaS

    • The Secure Collaboration team will be performing an infrastructure upgrade to enhance its security posture.

Back to Top