Release Notes

Threat Command

1. SSL Certificate Threats Show Last Scan Date: SSL Certificate threats now include the scan date for each linked domain. This clarifies issues related to linked domains, especially since SSL Certificate threats are constantly monitored.
2. Improved Phishing Website Detection Accuracy: AI-based website content context detection increases the accuracy and relevancy of phishing website alerts. Customers will receive more accurate website phishing alerts with fewer false positives.
3. Fewer False Positives for Domain Alerts: An extended domains whitelist service based on public feeds now covers more legitimate domains and prevents them from becoming alerts. Customers will receive more accurate threats with fewer false positives.
4. Faster Alerts for New Domains: When a matched domain certificate is updated, a rescan is triggered immediately. Customers will receive domain certificate alerts earlier (prior to the next analysis period).

Vulnerability Risk Analyzer (VRA)

1. Qualys Integration Permanent IP: The IP address that is used to integrate Qualys with the VRA has been changed from dynamic to static. Customers can add the IP address to their 'allowlist' and use it confidently and securely.
   Add both of these IP addresses: 34.136.221.156, 34.132.110.177

Platform

1. System Email Changes: The subject and content of system-sent email messages have changed to ensure that customers can more easily view important updates.
   Be sure to modify any filters or automations you have configured based on the subject and text of the emails to align with the changes. For more information, contact Customer Support.
2. Easier Access to Insight Platform Home: The "Platform Home" button is now located in the navigation menu instead of the header. Customers that have migrated to the Rapid7 Insight Platform can now quickly and easily navigate to Platform Home from the main Threat Command menu.

Fixes

Threat Command

TIP