July 2024

The daily updates in the CISO Workplace for the month of July 2024

Daily Update: July 11

Aside from the bug fixes, here's what's updated / improved:

We added another email and landing page template in the Phishing Simulation module.

image.png

In our CIM module, to help in the investigation of the alert, an Investigation Guide is available. As of this time, not all Alert Rules have Investigation Guide available.

image.png

In our Security and Privacy Compliance, you can now drag and drop the evidence files.

image.png

In the RM Module's Dashboard, the components can now be moved and positioned based on your preference.

image.png


Daily Update: July 12

Aside from bug fixes, here are the main updates in the CISO Workplace for July 12:

Go to your Users menu, you can now see when and what IP Address your Users logged in. 

image.png

In the CSPM module, you can now move some of the components around based on your preference.

image.png

In the SCRM module, you can now also move some of the components around based on your preference

image.png

Bug Fixes:

Fixes in the Task Management feature in the Risk Management Module

Fixes in the Simulation page of the Phishing Simulation Module

New Module (July 12): Vulnerability Assessment and Management


🚀 New Module Release 

We’ve just dropped a new module: Vulnerability Assessment and Vulnerability Management

🌟 New Features:

  • Dashboard components:
    • Overall Vulnerability Score
    • Overall Vulnerability Score - Trend
    • Vulnerabilities by Severity
    • Vulnerabilities by Asset Type

      image.png

  • Scans Page: After starting a scan, needs page refresh to see the running scan.
    • Scanning Capabilities:
      • Website Scanner only, using NMAP. Network Scanner, Mobile Scanner, and Quick Scan are not yet supported.
        • Able to show CVEs of a website/website port.

          image.png



        • image.png

          image.png

🐞 Known Issues:

  • When there is a running scan, there is no data in the Dashboard. When all scans are finished, there is data present.
  • No descriptions for CVEs yet

Stay tuned for more exciting updates!

Daily Update: July 15

Here are the latest updates in the CISO Workplace as of July 15:

Added new component in VA, VM Dashboard -- Top CVEs -- most occuring CVE(s) that are found in most scans.

image.png

RM Bug fixes:

- Risk Details No Data  Display (Vulnerability description, Threat description)
- Fix controls recommendation in controls json data issue
- Other assets affected Improvements (FE)
- Fix threat & vulnerability description delayed state issue

Daily Update: July 16

Here are the main updates in the CISO Workplace for July 16:

Initial Spanish Language Support 

- Based on the input, the CIM and Compliance modules are currently supported.

image.png

image.png

Performance Updates in Phishing Simulation when opening campaign in Simulation > Campaign

image.png

 

Daily Update: July 17

Here are the main updates in the CISO Workplace for July 17:

Continue with Spanish Translation.
In CIM > Alerts:

image.png

In Phishing Simulations:

image.png

Rabbit Hole Support in Vulnerability Assessment and Management:

image.png

 Bug Fixes:

1) Fixed bug in CIM > Reports > "My Library". Only reports of the client will be displayed

2) Bug fixes in Phishing Simulation

3) Bug fixes in Vulnerability Assessment and Management

Daily Update: July 18

Here are the main updates in the CISO Workplace for July 18:

Initial Widget Support for Phishing Simulations Module

image.png

Initial Update to the WP Menu.

Show the clusters’ names only with a ‘+’. On Click, to expand and show all modules in each.

image.png

Bug Fixes:

1) Risk Management 
Task management enhancements & Change risk response implementation

Improvements:
1) Show only CIM Module to one of the clients

New Module (July 19): SOAR

🚀 New Module Release 

We’ve just dropped a new module: SOAR (Security Orchestration, Automation and Response)

🌟 New Features:

Dashboard

image.png

SOAR Configuration

Daily Update: July 19

Here are the main updates of the CISO Workplace:

General Updates:

image.png

image.png

Risk Management Updates: 

1. Redesign of the risk management modal

                a. New presentation of data that has 2 modes Visualize and Detailed view on the left side

                b. Tabs on the left side that shows the comments, timeline and attached files including the upload file

2. Task Management improvements

                a. Add delete subtasks

                b. Tasks is linkable

                c. Fixes in the change risk response functionality

                d. Initial implementation for checklist.

3. Other Assets Affected options were added with default scores provided.

New Modules Release:

New Module (July 23): Virtual Penetration Testing

🚀 New Module Release 

We’ve just dropped a new module: Virtual Penetration Testing

🌟 New Features:

Dashboard

Limitation: Widget currently not clickable.

image

    

image

Penetration Test Page

image

New Scan: User can successfully add new scan

Limitation: 
1) Only "One Time" setting can be selected for Set Frequency 
2) Only "Now" setting can be selected for Start Time

image

Specific Scan Details

image

Known Issues:

Type of Attack Information: Only basic functionalities of each attack above are being performed by the tool. Wapiti Tool is currently being used. 

 

Daily Update: July 22

Here are the main updates of the CISO Workplace:

Add Recipients new modal in Phishing Simulation

image.png

image.png

EDR Spanish Translation

image.png

Compliance Improvements 

image.png

image.png

SOAR Bug Fixes

Daily Update: July 23

Here are the main updates of the CISO Workplace:

New Module: Virtual Penetration Testing

SOAR Improvements

image.png

image.png

Data Governance Improvement

image.png

Change in Language Select Menu

image.png

Bug Fixes:

 


Daily Update: July 24

Here are the main updates of the CISO Workplace:

SOAR Bug Fixes in Dashboard:

image.png

VPT Bug Fixes in Scan and Dashboard:

image.png

Translation Updates:

Updated the sidebar menu to have Spanish translation

image.png

Risk Management Updates:

Overall Gantt / Timeline Improvements

image.png

image.png

Phishing Simulation Updates:

Added Recipients Editing Capabilities

image.png

 

Daily Update: July 25

Here are the main updates of the CISO Workplace:

CyberNews Updates:

image.png

EDR Updates:

Modified to lower the VirusTotal Score from 24 to 2 vendors flagging the installer as malicious
-bkav pro is false positve 
- grayware half chance if malware or safe app

image.png

DPD Updates:

Support for Spanish Translation 

image.png

SOAR Bug Fixes:

image.png

Phishing Simulation Updates:

image.png

Virtual Penetration Testing Bug Fixes:

Daily Update: July 26

Here are the main updates of the CISO Workplace:

CIM Updates:

Alert Timeline more information:

image.png

image.png

Added Search in Alerts Page

image.png

Set Closing Reason Description as Optional:

image.png

CIM Bug Fixes:

Cannot Delete / Modify comments not belonging to user

image.png

User Filter in cases is closed automatically when mouse is out 

image.png

RM Updates

Task Management Overview component
Mitigation Proposal Timeline Gantt Chart
Assignee Full name displayed in Timeline
Improvement in Task management timeline search

image.png

Privileged Account Review Updates:

Spanish Translation Support

image.png

Virtual Penetration Testing Updates:

Updated dashboard with some "Rabbit Hole" support

image.png

Security and Privacy Compliance Updates:

Updated Timeline Gantt Chart

image.png

Daily Update: July 29

Here are the main updates of the CISO Workplace:

CIM Updates:

Fix on comments being erased when changing tabs, and added "Changes Confirmation" on comments:

image.png

Security and Privacy Compliance Updates:

Added Search in Gantt chart

image.png

Added click function in Gantt chart:

image.png

Identify and Access Review Updates:

Spanish Translation

image.png

Risk Management Updates:

Risk Management Date Picker - added min and max range for mitigation and tasks

image.png

Phishing Simulation Updates:

Added Settings to set the domain

image.png

Daily Update: July 30

Here are the main updates of the CISO Workplace:

CIM Updates:

In Alert Details, added "show less" and "show more" 

image.png

In Alert Details, updated the display formatting:

image.png

In Alert Details, updated the improvement for editing an alert detail:

image.png

Bug Fixes in graph display for Quarterly and Annual Report:

image.png

Cloud Security Posture Management Updates:

Spanish Translation

image.png

 

Daily Update: July 31

Here are the main updates of the CISO Workplace:

CIM Updates:

In Alert Table View, added "Show More", "Show Less", and "Copy to Clipboard" 

image.png

This can also be seen in the Timeline Table View:

image.png

Removed the Global Date Picker. It will only be displayed in Alerts and Cases.

image.png

VPT Updates:

Spanish Translation

image.png

VA/VM Updates:

Spanish Translation

image.png

Phishing Simulation Updates

Added Control Panel - Domain control for recipients

image.png