This release fixes ZVE-2022-2665 vulnerability which restricted guest users from performing Device Groups actions.
Fixes
This release fixes ZVE-2022-2671 vulnerability where the guest user can enable/disable compliance therefore committing privilege escalation, reported by Amit khandebharad.
Log360 Cloud now provides out-of-the-box compliance reports for the Protection of Personal Information Act (POPIA) and the California Privacy Rights Act (CPRA).
Log360 Cloud incorporates cloud access security broker (CASB) capability by providing a cloud protection server in networks to help organizations:
Monitor cloud application usage
Track data transfer to cloud
Monitor and control the use of shadow applications
Block high-risk cloud applications
New feature:
Monitor and audit AWS accounts: Log360 cloud now supports monitoring changes made to AWS accounts. It allows you to audit access to AWS S3 buckets and track Elastic Load Balancing (ELB) traffic.
Log360 Cloud now offers a Threat Management console to detect and track malicious content.
Log360 Cloud now provides Advanced Threat Analytics. You can now get crucial information on the severity of threats when potentially malicious URLs, domains, and IP addresses intrude into the network.
Log360 Cloud now helps you streamline security incident management.
Investigate and track security incidents.
Create incidents and assign technicians to investigate them.
Track the status, severity, and the progress made in the investigation of incidents.
You can now map triggered alerts, reports, and log search results as incidents and assign a technician to investigate them.
Log360 Cloud now provides notifications for important events in users' network via both email and SMS. It provides notifications for the following actions:
Access Key Regeneration
Account Termination
Agent Down
GDPR Enabled
Reload Historical Logs
Storage Threshold Reached
User Management
Log360 Cloud now provides the option to reload historical logs.