What's new ?

Reporting

• Combined Reports can now be downloaded and scheduled

Email Security

• Mailboxes view now supports pagination
• Ability to search for aliases
• Ability to display mailboxes synchronised from Active Directory

General

• Minor bug fixes

General

• Minor bug fixes

General

• Fix - email retract case sensitivity issue
• General fixes and cosmetic improvements

Web Security

• Added a new Header bypass type

General

• Fix - SecureMail configuration apply settings issue

General

• Fix - it's now possible to search Web Activity and Cloud Activity report by Active Directory domain
• LinkScan - it is now possible to use Custom Rule data to bypass rewriting of specific URL's (using RegEx). You will need to create a new Custom Rule data to use with the "LinkScan Bypass" condition

Security Awareness Training

• A company logo can now be added to the dashboard. Please contact your Service Provider for more information
• Anonymous Reporting - turning this on will redact personal data from simulations and audit report data. Please contact your Service Provider for more information
• Reporting only permissions by tenant, department and location
• Single day batched sends - the option to choose batched sends over a single day

General

• Fix - Scheduled reports do not honour the selected columns in the saved report
• Fix - Scheduled report notifications do not use configured brand settings
• Other minor bug fixes

General

• Minor bug fixes

General

• Minor cosmetic fixes

General

• General maintenance release
• Bug fixes

Bug fix

• "AD Group" filter now correctly displays groups from Azure AD for use in report queries

General

Updated Master Services Agreement

SecureMail

Enhancements to the SecureMail add-on for Email Security, including:

• The ability to enforce 2FA for external users
• The auto-expiry of messages
• A Forgotten Password flow for external users
• See Configuring SecureMail for further information
• Various improvements and minor bug fixes

General

• General maintenance release

Web Security

• Added a Capture Type option to the Mac OS X Agent Configuration section to toggle between identifying users by SAM, UPN or FQDN

General

• Minor cosmetic fixes

General

• Maintenance release to support the forthcoming Advanced DLP add-on

Bug fixes

• Cloud Activity (API) report shows filename column by default
• Fix for date conversion in Email Activity report

Cloud Application Security

• Added the ability to capture events from Onedrive and Sharepoint API connectors

Security Awareness Training

• Ability to impersonate a child SAT tenant
• Bug fix license change

Bug fixes

• Quarantine multi-select doesn't always select all items
• Mac OS X certificate generated in a Agent Config Profile now have unique serial numbers
• SecureMail delete item dialog box typo corrected
• Administrator section no longer limited to 200 users
• Keyword Filter in Analytics improved as a tag field
• Chart legend format no longer contains underscores

General

• Completion of the migration to Cloud Reporting mode
• Active schedules have been migrated however we recommend customers review them
• For assistance with Log Archives, please contact your service provider

Multi-Factor Authentication

• Made available the "Authentication Activity" report and charts when Cloud Reporting mode is enabled

Email Security

• Made available the "Email Activity (Personal)" report when Cloud Reporting mode is enabled

Bug fixes

• Fixed issue drilling down from Top Application Actions chart
• Fixed the series ordering on the Top Application Names chart
• Fixed issue running Web Activity by Hits with the "Block Unclassified Sites" rule filter
• Fixed issue using the "Agent" filter in Web Activity by Hits
• Fixed and issue with the logic when using the "Action Risk" filter. Now matches selected level and above
• Other minor fixes
• Authentication Activity notes field improvements

Bug fixes

• "Device Type" filter added to Web Activity reports

General

• Updates to support the forthcoming Security Awareness Training add-on product. Please contact your service provider for further information.

General

• Additional ACL's to control the Move and Delete account functions

Bug fixes

• Web Activity report filter improvements

Bug fixes

• Chart drill down fixes and improvements
• Email Activity report filter improvements

Bug fixes

• FIX - Certain Cloud Reporting chart drill-down or report filters cause the session to be invalidated and the user to be logged out.

General

• Remove End of Life products from menu

Email Security

• Fix - downloading file attachments containing a plus character causes an error

General

• Minor cosmetic fixes

General

• Fix - Forgotten Password flow does not mark the user as verified
• Fix - removed incomplete tooltips

Email Security

• General release of the Post Delivery Deletion feature for Email Security. View the Knowledge Base article for more information.

General

• General Maintenance Release to support the forthcoming switch to the new log platform for enhanced reporting

Email Security

• Message Details - the delivery state is now shown for each recipient (delivered, rejected, delayed)
• Fix - Long URL's in "Message Details" can be copied to the clipboard
• Fix - Long recipient list in "Message Details" now wraps correctly
• Fix - Quarantine Release action is now audited as "QuarantineRelease" with parameter to represent accompanying Safe/Deny action

Web Security

• Fix - Ability to copy data from the Cloud Activity (Inline) report to the clipboard
• Fix - updated the ARM64 anti-malware database URL for Mac OS X agents

Email Security

• General Maintenance Release

Email Security

• General maintenance release

General

• Updated MSA agreement
• Active Directory "Domain" label has been changed to "Name" to more accurately reflect that this is an arbitrary name string

Email Security

• FIX - Quarantine portal now provides paging
• FIX - Quarantine and Digest actions are now audited (requires Audit License)
• FIX - Error messages improved
• FIX - Validation to prevent selecting the same start and end time for Digests
• FIX - Append Text length validation relaxed
• FIX - Quarantine sometimes errors if the JWT token length is very long

Email Security

• Added new Dictionaries that can be used as part of a DLP policy to protect against sensitive data leakage
• Fix - detecting long strings in message body sometimes fails due to underlying encoding
• Fix - support for Greek characters in Executive Tracking names
• Fix - support for Greek/Cyrillic characters with the Append/Prefix to Subject action

Email Security

• General maintenance release

General

• Improved authentication with a new "Sign in with Microsoft" button that is accessible from the dashboard login page. Administrators can configure Single Sign On to allow easier on-boarding of end users or administrators with a custom role

IDaaS

• Early access to the forthcoming Identity-as-a-Service product. IDaaS is enabled by configuring an identity provider (or IdP) within the platform, along with one or more applications (service providers). There is no additional hardware or software to deploy.
• For further information please contact your account manager

Email Security

• General maintenance release

Email Security

• General maintenance release

Email Security

• Level 1 sandbox now uses pre-filtering for increased performance and reduced scan times

Email Security

• Improvements to the "Empty Body" detection rule
• Improvement to reject Reference headers with values larger than the RFC allowed size of 32792
• New DKIM keys default to 2048-bit

Bug fixes

• Restored the Active Directory -> Search option for accounts without an MFA license
• Change Password caused an API error
• Mac OS X Agent SSL Key is created automatically which overrides local certificate

Bug fixes

• Outbound email host validation improved

Email Security

• The Spam Safe/Deny List sections now support type-ahead searching for a mailbox.
• It is now possible to verify DKIM for a sub-domain.
• Quarantine Preview has been improved for iOS 15.
• Added additional Delivery State filters for "Delayed" and "Blocked".

Web Security

• It is now possible to create a certificate to deploy to Big Sur (and above) devices using MDM software. Requires Agent v4.3.8 or above.

Multi-Factor Authentication

• It is now possible to filter the Active Directory user list based on the status of synchronisation with the Cloud MFA service.

Bug fixes

• General: Active Directory configuration does not update the LDAP port when switching between LDAP and LDAPS.
• General: the Account List no longer shifts to the right after expanding more than 3 levels.
• General: the "Session Expired" dialog no longer appears behind the login fields
• Email Security: the Email Activity report now shows the Delivery State in red if there is a delivery failure.
• Email Security: a meaningful error is now displayed if a duplicate safe or deny list entry or mailbox is added.

General

• The AD Connect client software has been updated to support an API key as an alternative to using a restricted administrator user. Version 2.60.132 is now available for download.
• Within the Active Directory section, it is now possible to generate an API Key pair (Client ID and secret) for an on-premise connection.

Email Security

• Recipient Limit Per Hour condition and Sending Limit Redirect action have been added to the Sending Limit Monitoring capabilities. These will be applied automatically to new accounts if sending limits are exceeded. See the Bulk Mail & Fair Usage guide for more information.

Bug fixes

• "Executive Tracking Whitelist" custom data is not created automatically
• Reprocessing a quarantined message fails to detect DMARC
• Case sensitivity issue when detecting outbound sender

Email Security

• General maintenance release

Email Security

• Added the date and time of the last Spam Digest sent to any mailbox to the Global Digest Settings section.

Web Security

• The Reclassification Request system now includes the User Reason in the notifications and will provide feedback if a request cannot be completed or processed.

Bug fixes

• Switching between Global and Personal Quarantine no longer displays a loading mask continuously.
• Accessing the Super User section from Account Management when the account has remote management disabled no longer causes a logout event.
• Licenses cannot be updated if the account they belong to is deleted.
• It is no longer possible to set an unlocked License to have an expiry date in the past.
• Final Action and Final Rule columns now have sorting disabled on Email Activity report and Quarantine list. This will be addressed in a future maintenance release.
• Delivered column can now be sorted on the Email Activity report.
• Enabled sorting on Sender IP, Subject, Sender Address and Size columns on the Quarantine list.
• The Headers tab is now hidden if the email message has a rejected status.
• Bulk Mailbox Import now correctly sets the Mailbox Type.
• Agent update URL's are no longer duplicated in the Agent Configuration Profiles.
• The URL's tab is no longer missing when viewing Message Details.

General

Added a Role Builder interface for defining Roles with specific Access Controls (permissions) to the dashboard. The Role Builder compliments the existing pre-defined roles and is intended to allow more granular access for administrator users.

Web Security

• Added a Proxy Mode option to the Mac Agent Configuration section to toggle between SOCKS, HTTP or Auto-Detect modes of operation.
• Added a Capture Type option to the Windows Agent Configuration section to toggle between identifying users by SAM or UPN.
• Added a new Allow Tray App to be Started option if Hide Tray Icon is in use, to the Windows Agent Configuration section.
• Added a new Enable popup notifications for blocked downloads option to the Windows Agent Configuration section. A tray notification will be displayed if a download is blocked due to the MIME scanner.

Email Security

• Sending Limit Per Hour condition and Stop Deliver action available to rate limit outbound email. These will be applied automatically if sending limits are exceeded.

Bug fixes

• Issue requiring multiple clicks to accept the Master Services Agreement.
• Updated Active Directory - Users text for the Shared Mailbox icon.
• The Email Security - DHA rule can no longer be disabled.
• Improved validation when configuring MIME Type unpacker options.

Email Security - Quarantine

• Improved Global Quarantine and Personal Quarantine layout.
• Improved Preview Message which strips insecure scripts, clickable links and other malicious content from the message to provide users and administrators with an entirely SAFE preview.
• The option to Reprocess messages. This feature will reprocess messages through the rules engine after tweaks or changes to rules, resulting in delivery of messages that may have been previously incorrectly quarantined.
• The ability to Download Attachments from a quarantined message.
• Colour coded entries to indicate messages that have received a medium or high spam score.
• The name of the Rule that resulted in the message being quarantined
• A new more secure Quarantine Portal where end-users can review, release and deny messages directly from their Spam Digest email, without the need to further authenticate.

Bug fixes

• End User role can be changed once it has been set
• The Message Rules and Connection Rules list now correctly show a custom description if one has been set.

Bug fixes

• Improved Spam Safe/Deny list validation
• Removed auto fill from TOTP fields
• Improved DKIM verification

General

Added support for Time-Based One-Time Passwords (TOTP) as a second factor for authenticating with the dashboard. You can use any compatible app, such as Authy, Google Authenticator, etc. To configure TOTP, sign in to the dashboard, click the key icon in the top right, and then App Authentication.

Email Security

• Added DKIM activation and verification to the Domains configuration section. DKIM no longer requires manual activation by your service provider and will activate automatically once at least one DKIM public key can be verified for a domain.
• Renamed Global Safe/Deny List to Spam Safe/Deny List.

Bug fixes

• Improved validation on the Spam Safe/Deny List so that partial email addresses can no longer be entered.
• Updated incorrect tooltip for Chromebook Agent Profiles.

Bug fixes

• Cosmetic updates

Bug fixes

• Fixed role name display

Executive Tracking

The default Executive Tracking rule now supports a bypass list which can be used to skip detection for a list of defined email addresses contained in the "Executive Tracking Whitelist" Custom Rule Data.

Bug fixes

• Content-disposition attachment fix
• SPF macro fix

General

• Framework updates

Bug fixes

• Prefix to Subject action doesn't apply to an email if the final action is Quarantine.
• SPF failure when a CIDR is specified as domain name part.
• DKIM inserts incorrect bh= hash.
• File Type detection false positives.

Bug fixes

• Improved login speed for SecureMail service.
• Downloading attachments through external SecureMail interface sometimes fails.
• Fixed an issue where duplicate Sandbox licenses were added to a new account.

Bug fixes

• Time period formatting for the Feature Controls -> Time condition no longer shows a "NaN" error
• The Authentication Activity report shows an "Internal" label if the End User IP is a RFC1918 address
• When trying to schedule a chart, the correct "PDF" option is now available to select as the output format
• Improved error message when trying to delete Custom Rule Data if it is in use by a rule
• Forgotten password for End User fails if mailbox does not match the case of the associated admin username
• Updated Access Control labels in Provisioning and Account Settings
• The Agent Type column has now been renamed Agent, as it is a multi-purpose field
• Added the Category ID to the Custom URL category view to assist with troubleshooting
• In Email Activity and Quarantine, Added the received/sent date to the Message Detail view
• In Email Activity the Filter Rule and Filter Action column background colours are now tied to Delivery State for clearer indication that a mail has been delayed or rejected
• Added a Copy button the Message Detail view to easily copy the message GUID
• Added the Own Sender Domain connection rule condition
• Added a warning to the MFA Group filter within Active Directory on-premise connections
• Browser Categories and Browser Patterns from an account template or parent are now duplicated to the new account

Bug fixes

• Garbage characters appearing in the email when "Prefix HTML" action is in use with complex HTML tags.
• PermitSMTPRelay users should be excluded from the Open Relay Protection rule.
• Connection rule with ACCEPT action is not logged correctly.
• Dictionary can now be used with a connection rule GeoIP condition.

Bug fixes

• Web Security - unable to save a Chromebook profile if no default profile exists
• Web Security - issue deleting a Chromebook agent from the Deployment grid
• Web Security - status and last username detail is now displayed correctly in the Deployment grid
• Web Security - removed Browser Type and OS conditions from the Feature Controls rules editor as they are not currently supported
• Email Security - the Quarantine subject field now supports Greek and Cyrillic characters rather than displaying ??? question marks
• Cloud MFA - improved the tooltip text for users pending synchronisation with IntelliTrust

Web Security

• Added support for the upcoming USS Agent for Chromebook release. It is now possible to create and manage Chromebook configurations and deployments from within the dashboard.
• Support for the "Agent Anti-Malware (Mac OS X)" add-on product which scans downloaded files for malware on the endpoint.
  • Added the product to Provisioning and License Management.
  • Once licensed the product can be configured in the Agent Configuration section.
  • Requires USS Agent for Mac OS X 4.3.1 or above.
• Added a new "Hide tray icon on startup" option in the Windows Agent Configuration section. Requires USS Agent for Windows version 4.3.8 or above.

Bug fixes

• Web Security - it is now possible to deselect a tag if it has been selected as a report filter.
• Web Security - Time condition with a single time period now correctly matches.

General

Update to the Master Services Agreement (v2.2). For further information please see the legal section.

Bug fixes

• General - license region is missing during provisioning

Web Security

• Added Browser Type condition. With this new feature, you can define categories of browsers and conditionally match on version. For example, you could block all end of life versions of Internet Explorer, or only allow a certain group of users to use Firefox.
• Added Operating System condition. With this new feature, you can control web requests based on the originating operating system. For example, you could block all vulnerable versions of Microsoft Windows or only allow Mac OS X devices to access specific web resources.
• Extended the options for the MIME Type action to support scanning archives. Requires latest agent (Windows: 4.3.12+) and gateway (v1.2.27+) software (scheduled for General release Q1 2021).
• Updated the AD User condition to allow selection of UPN user, for use with hybrid AD deployments.
• Updated the AD Group condition to allow selection of Azure AD groups, for use with hybrid AD deployments.

General - Active Directory

• The Username (UPN) column now indicates if the user is a shared mailbox from Azure Active Directory with an icon.
• Added the ability to configure the NetBIOS domain on an Azure Active Directory connection, which is required for using web security with hybrid AD.
• Added "Given Name" and "Surname" fields to the user settings panel.

General - Licensing

• It is now possible to increase the user count and extend the expiry date of a locked Standard license.

Reports

• The Web Activity and Cloud Activity - Inline reports have been updated to display the domain and username in separate columns. This is to support UPN style usernames as well as traditional SAM and Domain.

Bug fixes

• General - new product licenses default to 50 users.
• Email Security - custom quarantine names are limited to 32 characters.
• Web Security - category list is not limited to 25 categories.
• Web Security - missing $VIRUSNAME$ placeholder available in block templates.
• Web Security - timestamps in the Deployment section display correctly when using Safari.

Bug fixes

• Minor cosmetic fixes

General - Active Directory

• Added support for synchronising shared mailboxes from Azure Active Directory with Exchange Online. Additional permissions must be granted to allow access to the shared mailbox properties. Please see the Knowledge Base article.

Web Security

Added support for using the AD Group condition when synchronising groups from Azure Active Directory in hybrid mode.

Bug fixes

• Cloud Activity (Inline) report - the Keyword Category filter now uses OR logic when searching for matching categories.
• Azure Active Directory sync - fixed a spurious issue where some Azure Active Directory synchronisations failed due to a "nextLink" error from the Graph API.

Bug fixes

• Audit report sometimes stalls with a loading symbol

Bug fixes

• Minor cosmetic fixes

Bug fixes

• SecureMail - attachment does not display on mobile view
• SecureMail - replies are not editable on mobile view
• SecureMail - font drop down is not selectable in mobile view
• SecureMail - SecureMail option is not visible for administrator role
• Licenses - error viewing licenses on accounts where administrator has been removed

SecureMail add-on for Email Security

• SecureMail is an add-on for the Email Security product that allows users to send an email message that can only be viewed and responded to from within a secure web based dashboard
• Contact your Service Provider for more information about the license

Email Security

• Added a "Scan Office Files" condition which allows Custom Rule Data to be used to scan Microsoft Office files for patterns (excluding PDF)

Compliant Email Archive

• Opening the Compliant Email Archive from the USS dashboard is now an audited event (requires the Audit product)

Cloud App Security

• Recent Office 365 application changes have required App Catalog actions to be significantly updated. Please review any rules that use App Actions for O365 as they may require updating

Bug fixes

• Account Management - the search is not reapplied after the account list is refreshed
• License Management - added an edit icon on the license management grid for clarity. Also increased the default window size
• Email Security - the validation on the Custom Rule Data text entry fields has been relaxed, allowing for larger entries to be saved
• Email Security - it is no longer possible to use reserved words such as "spam" and "virus" in a Custom Quarantine name
• Web Security - fixed an issue submitting a URL Reclassification when managing a child account but the parent account does not have Web Security licensed

Email Security

• Minor bug fix

Email Security

• Support for UTF-8 characters in the Notify Recipient and Notify Sender actions

General

• Improved the load time and performance of the Account Hierarchy tree
• Enabled automatic license expiry and suspension emails

Web Security - General

• Added the option to request an email notification when a Reclassification Request has been processed. By processed, it means the URL has changed categorisation since the request was submitted.

Web Security - Windows agent

• Support for the "Agent Anti-malware (Windows)" product which scans downloaded files for malware on the endpoint:

• Added the product to Provisioning and License Management
• Once licensed the product can be configured in the Agent Configuration section
• Reporting through the Web Activity analytics
• Requires USS Agent for Windows 4.3.x (release candidate)

• Added the option to select a specific Auto-Update repository and options include Stable (General Availability), Release Candidate and Beta. A custom repository is also supported.

Web Security - Mac agent

• Added the option to skip entering a password to start the agent manually if it has already been stopped using the password
• Added the option to select a specific Auto-Update repository and options include Stable (General Availability), Release Candidate and Beta. A custom repository is also supported.

Web Security - Gateway

• Added an "Allow upgrades to other protocols from HTTP/1.x" option to enable Web Socket support with USS Gateway 1.2.x

Email Security

• Added the option to "Send Copy To" from the Global Quarantine, allowing a quarantined message to be sent to a different recipient for analysis
• Added a new "Header Exists" condition to check for the presence of a message header using exact match or regular expression
• Added detection of password protected PDF documents to the default "Password Protected Attachment" rule

Bug fixes

• General - Added missing tooltips to the template options in account provisioning wizard
• Email Security - fixed a regression that allowed a system rule to be editable
• Email Security - fixed the description for the AD Group condition
• Email Security - improved the placeholder text for the Sender IP filter
• Email Security - fixed a typo in the "Prefix HTML" action description
• Email Security - fixed a typo in the "Re-Route To" action description
• Web Security - fixed the X-Forwarded-For tooltip on Gateway Profile Configuration
• Web Security - fixed the duration values and chart axis in the Top Users (Time) and Top Domains (Time) charts
• Web Security - gateway anti-malware maximum scan size warning message will be displayed after 6Mb

General

• This release introduces a more formalised approach to License Types, to assist partners with provisioning and reporting. It also introduces account level permissions to control provisioning of certain License Types (contact your service provider for more information).
• The "Products" section within provisioning has been renamed "Licenses"
• Added additional "Live Date" and "Live By" columns to the license view
• Added “License Type” to the dashboard product panels

Web Security

The Web Security conditions for Active Directory user and group can now be used with an Azure AD connection that is operating in hybrid mode (requires samaccountname attribute to be synchronised from on-premise AD)

Bug fixes

• The 2FA authentication flow is now fully audited (if Audit product is enabled)

Email Security

Support for the "Compliant Email Archive" product. This product provides archiving of all inbound and outbound email with Data Guardian supervision and sophisticated search options. Please contact your service provider for more information.

• Added the product to Provisioning and License Management
• Added the ability for administrators to log in automatically to the Email Archive system for configuration and administration

Bug fixes

• Fixed a problem initialising the dashboard which may occasionally cause the dashboard to fail to load without a manual refresh
• Removed the ability to use a custom attribute for phone and email data from an Azure Active Directory sync. This is no longer supported through the Graph API.
• Removed an empty Sandbox Settings option which appears for End User role.

General

• Updated background image for Provisioning, new Administrator and Forgotten Password screens

Email Security

Support for the "Email Security Sandbox - Level 2" product add-on.

• Added the product to Provisioning and License Management
• Added a new Message Rule condition called "Email Sandbox - Level 2" which sends attachments to the sandbox for deep scanning

Log Streaming

Added support for SumoLogic via new "Form Post" output method. Log data will be sent to the specified URL using a multipart form upload (POST method).

Bug fixes

• Deliver Inbound/Outbound rules are now locked for editing but can still be moved

General

• New splash screen and login screen layout.
• Infrastructure upgrades for the upcoming general release of the ASE product (Autonomous Security Engine).

General

Additional Roles have been created to support various new use cases. See the Knowledge Base article for more information.

Bug fixes

• Custom URL domains are forced to lower case to avoid rule matching issues
• Importing mailboxes with mixed case email addresses are now duplicate checked correctly
• A warning is now shown when deleting an Active Directory domain if the users or groups are in use by Web Security or Email Security rules

Bug fixes

• Custom URL patterns are now audited (requires Admin Audit product)
• Improved validation on license expiry date
• The Message Rules rule builder opens the "Sandbox - Level 2" rule correctly if it is present
• Manually downloaded reports are only sent if the email recipient is verified
• Combined Chart report is not saved correctly for a user that uses AutoLogin method from an external application
• Excel formatted reports now follow the formatting from the interface