Release Summary
InsightCloudSec is pleased to announce release version 24.10.8. This release includes a new AWS resource, interface improvements for Vulnerability Settings and API Keys, and support for AWS China, AWS GovCloud, Azure China, and Azure GovCloud organizations.
Python upgrade
With next week's release (v. 24.10.15), InsightCloudSec will be upgrading our Python to version 3.10. Custom Plugins may be affected, so you should contact your Customer Success Manager or Support for help upgrading your plugins. Also, there will be no self-hosted release.
Completed Scheduled Events retention policy updates
With next week's release (v. 24.10.15), we are introducing a retention policy of 365 days for completed Scheduled Events.
New Permissions: AWS
These permissions support the AWS Security Hub resource. All permissions have been added to the appropriate onboarding user roles.
"securityhub:DescribeHub"
The following permission was missing from the Commercial and GovCloud Read Only policies. All permissions have been added to the appropriate onboarding policies.
"lambda:GetFunctionConcurrency"
Details for self-hosted customers
- Release Availability - Self-hosted customers are able to download the new version of InsightCloudSec usually 2-3 days after SaaS customers are upgraded. The estimated date for this version's self-hosted availability is Thursday, October 10, 2024.
- The latest Terraform template (static files and modules) can be downloaded here. Modules can be updated with the
terraform get -updatecommand.
- The latest Terraform template (static files and modules) can be downloaded here. Modules can be updated with the
- Amazon Elastic Container Repository (ECR) Image Tags - You can obtain the ECR build images for this version of InsightCloudSec from the InsightCloudSec ECR Gallery.
New
- Added support for the AWS Security Hub resource.
Improved
- Improved the Vulnerabilities Settings page navigation and look-and-feel.
- Turned on the new User Management > API Keys interface by default. You can access the old interface if you click the Switch to Legacy UI button.
- Improved the way AWS Security Group Rule Resource IDs are constructed to use the Security Group Rule ID provided by AWS. This provides direct Security Group Rule modification support in InsightCloudSec, which means you don't have to recreate the Rule. Because of this update, a spike in resource creation and deletion is expected for AWS Security Group Rules on the first harvest. From then on, rules will be modified in place.
- Updated the regions supported for the AWS Bedrock resources and split the Bedrock Model harvester into two separate harvesters: one for foundation models and one for custom models.
- Added support for AWS China, AWS GovCloud, Azure China, and Azure Government cloud organizations.
- Harvested a new Subject Alternative Names (SANs) property for the SSL Certificate resource.
- Updated the
SSL Certificate Supports All SubdomainsQueryFilter to support SANs. - Added Image ID as a column to the unified vulnerability report.
Fixed
- Fixed an issue where host vulnerability assessment (HVA) reports were not being picked up by the HVA report handler manager job.
- Fixed the first seen date for some vulnerabilities.
- Fixed an issue where Azure's
Microsoft.WebbasicPublishingCredentialsPoliciespermission would be incorrectly flagged as missing. - Fixed an issue where some background jobs would fail before starting due to unexpected arguments passed to them.
- Resolved package security vulnerabilities in accordance with our vulnerability resolution policy.
- The Instances export now contains a
aws_imds_statuscolumn.