Release Summary
InsightCloudSec is pleased to announce release version 25.4.1. This release includes new Insights, improved resource scoping, and an easier way to create exemptions.
Details for self-hosted customers
Upgrading from version 25.3.18 or earlier?
It is recommended to schedule downtime for InsightCloudSec with your user base and scale interface servers to 0 before taking this upgrade. After the upgrade is complete, you may revert the interface server scaling.
- Release Availability - Self-hosted customers are able to download the new version of InsightCloudSec usually six business days after SaaS customers are upgraded. The estimated date for this version's self-hosted availability is April 7, 2025.
- The latest Terraform template (static files and modules) can be downloaded from our public S3 bucket: https://s3.amazonaws.com/get.divvycloud.com/prodserv/divvycloud-prodserv-tf/example-usage/aws/release/divvycloud-tf-release.zip
- Modules can be updated with the
terraform get -updatecommand.
- Amazon Elastic Container Repository (ECR) Image Tags - You can obtain the ECR build images for this version of InsightCloudSec from the InsightCloudSec ECR Gallery: https://gallery.ecr.aws/rapid7-insightcloudsec?page=1
New
- Added the following Insights:
Access List Exposing RDP to the PublicAccess List Exposing SSH to the Public
Improved
- Improved the organization on the Scope panel in the Resources Inventory page to provide clarity when scoping by clouds or badges.
- Added a Last Full Harvest column to the container image Resources Inventory table.
- Added a Create Exemption action to the Insight Findings tab on the Resource Properties panel.
- Added a toggle to the Automatic LPA Setup workflow to improve infrastructure redundancy for an additional cost. Visit Azure LPA Setup for more details.
Fixed
- Harvesting support for PostgreSQL Single Server= resources has been removed as this resource type has been deleted by Azure as of March 28, 2025. Review the Azure documentation for more details: https://learn.microsoft.com/en-us/azure/postgresql/migrate/whats-happening-to-postgresql-single-server
- Fixed an issue preventing you from creating a custom Insight pack with multiple base packs.
- Fixed an issue with the
DataStreamsharvesting job that was resulting in an excessive amount of operations. - Fixed an issue where accounts missing the
"Microsoft.Security/defenderForStorageSettings/read"Azure permission would not flag the permission as missing in InsightCloudSec.