Index

Apr 01, 2025

This release includes new Insights, improved resource scoping, and an easier way to create exemptions.

Release Summary

InsightCloudSec is pleased to announce release version 25.4.1. This release includes new Insights, improved resource scoping, and an easier way to create exemptions.

Details for self-hosted customers

⚠️

Upgrading from version 25.3.18 or earlier?

It is recommended to schedule downtime for InsightCloudSec with your user base and scale interface servers to 0 before taking this upgrade. After the upgrade is complete, you may revert the interface server scaling.

Release Availability - Self-hosted customers are able to download the new version of InsightCloudSec usually six business days after SaaS customers are upgraded. The estimated date for this version’s self-hosted availability is April 7, 2025.
- The latest Terraform template (static files and modules) can be downloaded from our public S3 bucket: https://s3.amazonaws.com/get.divvycloud.com/prodserv/divvycloud-prodserv-tf/example-usage/aws/release/divvycloud-tf-release.zip
- Modules can be updated with the terraform get -update command.
Amazon Elastic Container Repository (ECR) Image Tags - You can obtain the ECR build images for this version of InsightCloudSec from the InsightCloudSec ECR Gallery: https://gallery.ecr.aws/rapid7-insightcloudsec?page=1

New

Added the following Insights:
- Access List Exposing RDP to the Public
- Access List Exposing SSH to the Public

Improved

Improved the organization on the Scope panel in the Resources Inventory page to provide clarity when scoping by clouds or badges.
Added a Last Full Harvest column to the container image Resources Inventory table.
Added a Create Exemption action to the Insight Findings tab on the Resource Properties panel.
Added a toggle to the Automatic LPA Setup workflow to improve infrastructure redundancy for an additional cost. Visit Azure LPA Setup for more details.

Fixed

Harvesting support for PostgreSQL Single Server= resources has been removed as this resource type has been deleted by Azure as of March 28, 2025. Review the Azure documentation for more details: <https://learn.microsoft.com/en-us/azure/postgresql/migrate/whats-happening-to-postgresql-single-server>
Fixed an issue preventing you from creating a custom Insight pack with multiple base packs.
Fixed an issue with the DataStreams harvesting job that was resulting in an excessive amount of operations.
Fixed an issue where accounts missing the "Microsoft.Security/defenderForStorageSettings/read" Azure permission would not flag the permission as missing in InsightCloudSec.