Release Summary
InsightCloudSec is pleased to announce release version 25.2.4. This release includes Insight formatting updates and minor fixes.
Azure deprecating virtual network injection for Azure Data Explorer (ADX)/Kusto clusters
Beginning February 1, 2025, Azure will restrict an event hub's system-assigned identity from entering an ADX cluster's virtual network. This means if you are currently using the Azure Least-Privileged Access feature and deployed it using a virtual network, you will need to migrate to using managed virtual private endpoints instead. We recommend following Azure's detailed migration guide.
Details for self-hosted customers
- Release Availability - Self-hosted customers are able to download the new version of InsightCloudSec usually six business days after SaaS customers are upgraded. The estimated date for this version's self-hosted availability is February 10, 2025.
- The latest Terraform template (static files and modules) can be downloaded from our public S3 bucket: https://s3.amazonaws.com/get.divvycloud.com/prodserv/divvycloud-prodserv-tf/example-usage/aws/release/divvycloud-tf-release.zip
- Modules can be updated with the
terraform get -updatecommand.
- Amazon Elastic Container Repository (ECR) Image Tags - You can obtain the ECR build images for this version of InsightCloudSec from the InsightCloudSec ECR Gallery: https://gallery.ecr.aws/rapid7-insightcloudsec?page=1
Improved
- Updated the following Insights to meet CIS GCP standards for recommendations 1.1 and 1.2:
Cloud User Access Uses GmailNon-Service Account without MFA Enabled
Fixed
- Fixed an issue where AWS Classic Load Balancers were not showing any associated Virtual Private Cloud (VPC) in Related Resources.
- Fixed an issue preventing Basic Users from viewing the Application Details panel.
- Fixed an issue preventing all resources from being displayed in the Trend and Analytics graph on Layered Context when accessing the feature by clicking a toxic combination or a critical risk factor.
- Fixed an issue where the Web Application Firewall harvester would fail if InsightCloudSec couldn't retrieve IP sets.