What's new ?
v2.45.2 - 24th April 2023
Web Security |
|
v2.45.1 - 20th April 2023
General |
|
v2.45.0 - 13th April 2023
General |
|
v2.44.1 - 28th March 2023
Bug fixes |
|
v2.44.0 - 24th March 2023
Cloud Application Security |
|
v2.43.4 - 2nd March 2023
Security Awareness Training |
|
v2.43.3 - 14th February 2023
Bug fixes |
|
v2.43.2 - 30th January 2023
General |
|
v2.43.1 - 21st December 2022
Multi-Factor Authentication |
|
Email Security |
|
Bug fixes |
|
v2.43.0 - 13th December 2022
Bug fixes |
|
v2.43.0 - 30th November 2022
General |
|
General |
|
v2.42.7 - 21st November 2022
Bug fixes |
|
v2.42.6 - 17th November 2022
Bug fixes |
|
v2.42.5 - 15th November 2022
Bug fixes |
|
v2.42.4 - 11th October 2022
General |
|
v2.42.3 - 28th September 2022
Email Security |
|
v2.42.2 - 27th September 2022
General |
|
v2.42.1 - 20th September 2022
General |
|
v2.42.0 - 15th September 2022
Email Security |
|
v2.41.0 - 30th August 2022
General |
|
Email Security |
|
Web Security |
|
Email Security maintenance release - 14th July-19th July 2022
Email Security |
|
Email Security maintenance release - 29th June-5th July 2022
Email Security |
|
v2.40.1 - 27th June 2022
General |
|
Email Security |
|
Email Security maintenance release - 19th-21st June 2022
Email Security |
|
Email Security maintenance release - 26th-31st May 2022
Email Security |
|
v2.40.0- 24th May 2022
General |
|
IDaaS |
|
Email Security maintenance release - 5th-8th May 2022
Email Security |
|
Email Security maintenance release - 13th-19th April 2022
Email Security |
|
Email Security maintenance release - 30th March-5th April 2022
Email Security |
|
Email Security maintenance release - 2nd-7th March 2022
Email Security |
|
v2.39.6 - 13th January 2022
Bug fixes |
|
v2.39.5 - 4th January 2022
Bug fixes |
|
v2.39.5 - 21st December 2021
Email Security |
|
Web Security |
|
Multi-Factor Authentication |
|
Bug fixes |
|
v2.39.0 - 28th November 2021
General |
|
v2.38.5 - 29th October - 2nd November 2021
Email Security |
|
Bug fixes |
|
v2.38.0 - 30th September 2021
Email Security |
|
v2.37.5 - 2nd August 2021
Email Security |
|
Web Security |
|
Bug fixes |
|
v2.37.0 - 23rd July 2021
General | Added a Role Builder interface for defining Roles with specific Access Controls (permissions) to the dashboard. The Role Builder compliments the existing pre-defined roles and is intended to allow more granular access for administrator users. |
v2.36.5 - 15th June 2021
Web Security |
|
Email Security |
|
Bug fixes |
|
v2.36.0 - 3rd June 2021
Email Security - Quarantine |
|
Bug fixes |
|
v2.35.6 - 10th May 2021
Bug fixes |
|
v2.35.5 - 5th May 2021
General | Added support for Time-Based One-Time Passwords (TOTP) as a second factor for authenticating with the dashboard. You can use any compatible app, such as Authy, Google Authenticator, etc. To configure TOTP, sign in to the dashboard, click the key icon in the top right, and then App Authentication. |
Email Security |
|
Bug fixes |
|
v2.35.2 - 19th April 2021
Bug fixes |
|
v2.35.1 - 6th April 2021
Bug fixes |
|
Email Security maintenance release - 31st March-5th April 2021
Executive Tracking | The default Executive Tracking rule now supports a bypass list which can be used to skip detection for a list of defined email addresses contained in the "Executive Tracking Whitelist" Custom Rule Data. |
Bug fixes |
|
v2.35.0 - 29th March 2021
General |
|
Email Security maintenance release - 17th-22nd March 2021
Bug fixes |
|
Email Security maintenance release - 4th-9th March 2021
Bug fixes |
|
v2.34.2 - 15th February 2021
Bug fixes |
|
Email Security maintenance release - 4th-8th February 2021
Bug fixes |
|
v2.34.1 - 22nd January 2021
Bug fixes |
|
v2.34.0 - 18th January 2021
Web Security |
|
Bug fixes |
|
v2.33.2 - 28th December 2020
General | Update to the Master Services Agreement (v2.2). For further information please see the legal section. |
v2.33.1 - 18th December 2020
Bug fixes |
|
v2.33.0 - 17th December 2020
Web Security |
|
General - Active Directory |
|
General - Licensing |
|
Reports |
|
Bug fixes |
|
v2.31.1 - 6th November 2020
Bug fixes |
|
v2.31.0 - 2nd November 2020
General - Active Directory |
|
Web Security | Added support for using the AD Group condition when synchronising groups from Azure Active Directory in hybrid mode. |
Bug fixes |
|
v2.30.3 - 8th September 2020
Bug fixes |
|
v2.30.2 - 2nd September 2020
Bug fixes |
|
v2.30.1 - 24th August 2020
Bug fixes |
|
v2.30.0 - 6th August 2020
SecureMail add-on for Email Security |
|
Email Security |
|
Compliant Email Archive |
|
Cloud App Security |
|
Bug fixes |
|
v2.29.2 - 23rd June 2020
Email Security |
|
v2.29.2 - 2nd June 2020
Email Security |
|
v2.29.1 - 5th May 2020
General |
|
Web Security - General |
|
Web Security - Windows agent | • Support for the "Agent Anti-malware (Windows)" product which scans downloaded files for malware on the endpoint:
• Added the option to select a specific Auto-Update repository and options include Stable (General Availability), Release Candidate and Beta. A custom repository is also supported. |
Web Security - Mac agent |
|
Web Security - Gateway |
|
Email Security |
|
Bug fixes |
|
v2.28.0 - 15th April 2020
General |
|
Web Security | The Web Security conditions for Active Directory user and group can now be used with an Azure AD connection that is operating in hybrid mode (requires |
Bug fixes |
|
v2.27.0 - 19th March 2020
Email Security | Support for the "Compliant Email Archive" product. This product provides archiving of all inbound and outbound email with Data Guardian supervision and sophisticated search options. Please contact your service provider for more information.
|
Bug fixes |
|
v2.26.0 - 6th March 2020
General |
|
Email Security | Support for the "Email Security Sandbox - Level 2" product add-on.
|
Log Streaming | Added support for SumoLogic via new "Form Post" output method. Log data will be sent to the specified URL using a multipart form upload (POST method). |
Bug fixes |
|
v2.25.0 - 2nd March 2020
General |
|
v2.24.6 - 31st January 2020
General | Additional Roles have been created to support various new use cases. See the Knowledge Base article for more information. |
Bug fixes |
|
v2.24.5 - 13th January 2020
Bug fixes |
|
v2.24.4 - 11th December 2019
General |
|
v2.24.3 - 4th December 2019
Bug fixes |
|
v2.24.0 - 6th November 2019
Email Security | Added the option to import mailboxes from a CSV file that has been exported from Microsoft Exchange Online. This is an alternative to using the Active Directory synchronisation feature. |
Cloud MFA |
|
Active Directory | Added the option to specify a group attribute name and value to limit the users that are synchronised from an Azure Active Directory connection. |
Bug fixes |
|
v2.23.0 - 28th October 2019
Reporting | Introducing the "Log Streaming" product which provides the capability to output enriched log data to a 3rd party product/service - such as a data analysis tool or SIEM solution.
|
Email Security | Updated the default Spam Digest template to render correctly in "Dark Mode" on various device operating systems such as Mac OS X and iOS 13. |
Bug fixes |
|
v2.22.0 - 30th September 2019
Email Security | Introducing the "Image Content Analysis" product add-on which detects Not Safe for Work (NSFW) image content within email attachments, archives and Office documents.
|
Web Security - Agent Profiles | A confirmation dialog is now displayed if a Gateway configuration option is changed that will cause the Gateway proxy to restart. The administrator must now confirm the action. |
Web Security - USS Gateway | Version 1.1.53 is now available for download:
|
Web Security - Deployment |
|
Bug fixes |
|
v2.21.0 - 3rd September 2019
Settings - Active Directory (AzureAD) | It is now possible to limit an Azure AD sync using an Extension Attribute name and value. This can be useful if you only wish to synchronise a sub-set of users to USS. |
Web Security - Deployment |
* Currently this applies to the Windows agent only and requires v4.2.11 and above. Mac OS X agent and Gateway support coming soon. |
Email Security - Sandbox Settings | A new section called Sandbox Settings is available in Email Security / Product Configuration if one of the sandbox products is active. Sandbox Settings allows you to enable or disable Sandbox Notifications and customise the Mail From and Name for notification emails. |
Bug fixes |
|
v2.20.0 - 19th August 2019
General |
|
Web Security |
|
Bug fixes |
|
v2.19.0 - 26th July 2019
Email Security | Support for the "Email Security Sandbox - Level 1" product add-on which will be available in all regions w/c 29th July.
|
Email Security | Added a "Digest & Branding" section within Product Configuration to enable further customisation of the Spam Digest email. |
General | When provisioning a new account based on an existing "Child Account" the new account now inherits the Filter Rules, Feature Controls, Categories and Saved Reports from the template account. |
Bug fixes |
|
v2.18.0 - 12th July 2019
Email Security | It is now possible to view and manage End User (personal) Safe/Deny lists from the Global Safe/Deny section |
Reports - Email Security | Added a new column to the Actions tab within the Message Details panel which shows each recipient the action was applied to, if there were multiple recipients of the message. |
Reports - Audit | Added coverage for the following Email Security sections to the Admin Audit product:
|
General | The username is pre-populated on the login form after account / administrator activation to make first time login simpler. |
General | A Forgotten Password link is now available on the login page to allow administrators to reset their password easily. |
Web Security - Windows Agent Configuration | In preparation for general availability of the upcoming Windows Agent, the following updates have been applied to the Windows Agent Configuration Profile section. If you would like to evaluate the release candidate, please contact the helpdesk. The following features require Windows Agent 4.2.8 or above:
|
Windows Agent | Version 4.2.8 is now available to download for new installs. This version of the agent supports MIME Type scanning and contains numerous bug fixes. |
Web Security | A new set of system block templates have been added with a fresh design. The new templates include Warning, Quota, File Download and Unclassified Site block pages. |
Bug fixes |
|
v2.17.0 - 27th June 2019
Email Security - Message Rules | Added a new Sender IP Geolocation condition to Connection Rules which allows you to accept or reject email messages based on the geo location of the senders IP address. |
Roles Based Access Control | A new End User Portal role has been created which allows end-users to log in to the dashboard and manage product features. End users are represented as administrators but with very restricted access. |
End User Portal | Through the new End User Portal role, the following sections have been added to the Email Security product:
Please note: you can only access the "Personal" screens when logged in directly as the end-user. The options will be disabled when managing a child account or, in the case of Email Security, if the username of the end-user does not have a corresponding mailbox. |
Administrators | Added an Import option to allow mass on-boarding of administrators. This makes it easy to on-board a list of email addresses as new administrators with the End User Portal role assigned. New administrators, regardless of role, are required to go through the email verification process before they can sign in. |
Email Security - General |
|
Reporting - Audit | Added logging for the following Email Security configuration actions:
Additional actions will be added as part of 2.17.1 to complete the coverage. |
Web Security - Charts | Added new charts for response based scanning (requires USS Gateway 1.1.49 and above):
NOTE: detailed hit information is now available as part of the Web Activity by Hits report. The Malware Detections and Image Reputation report will be end of life soon. |
Email Security - Bug fixes |
|
Web Security - Bug fixes |
|
v2.16.0 - 3rd June 2019
Settings - Active Directory | It is now possible to synchronise objects from a Microsoft Azure Active Directory into USS. You will need your Azure tenant name (e.g. name.onmicrosoft.com) and you will be required to approve USS for read access to the Azure directory by granting consent with an administrator user account. If the Azure AD is also synchronised with an on-premise directory, it is possible to use this as the primary source of Active Directory objects. Please note that adding a new Domain Connection will require you to update existing web security rules that use AD attributes. |
Web Security - Filter Rules | Added the ability to set a password for a filter rule that uses the Warn final action*. If a password is set, the end-user will be required to enter the password in order to proceed through the warning page. * This requires infrastructure updates that are scheduled to be completed by 8th June 2019 |
Reports - Web Security by Hits/Visits | Added a Details panel to each result which displays all of the collected meta data for the request. |
Settings - Administrators & Reports | Added the ability to redact sensitive information within reports for specific administrator users within an account. |
Bug fixes |
|
v2.15.0 - 15th May 2019
Reports - General |
|
Product - MFA |
|
Bug fixes |
|
v2.14.2 - 9th May 2019
Bug fixes |
|
v2.14.1 - 7th May 2019
Master Services Agreement | Following a general review of our terms and conditions, our Master Services Agreement has been updated. Version 2.0 of the Master Services Agreement comes into effect on 8 May 2019 and supersedes all previous EULAs, SLAs and v1.0 of the MSA. For further information please see https://www.censornet.com/legal |
v2.14.0 - 3rd May 2019
Reports - General |
|
Reports - Web Security |
|
Account Settings |
|
Account Management |
|
Bug fixes |
|
v2.12.1 - 10th April 2019
Bug fixes |
|
v2.12.0 - 29th March 2019
Roles Based Access Control | Added support for RBAC (Roles Based Access Control) to the dashboard with a set of pre-defined roles for easy restriction of administrator capabilities. The following roles are supported in this release:
|
Email Security - Mailboxes | This section has been updated to show an icon if the mailbox was synchronised from Active Directory. It now also shows the total number of mailboxes and the number of those which were synchronised from Active Directory, e.g. 159 mailboxes synchronised (130 from Active Directory) |
Email Security - Global Quarantine | Now supports Safe/Deny by IP address for quarantined messages. |
Product Settings - Administrators | The "Super User" column has been removed and a new "Role" column added that allows a super user to set a role for another admin user. |
MFA - portal logins | Dashboard logins now use SMS-based one time passcodes. Support for the "CensorNet /SMSPASSCODE App" is no longer available for dashboard logins. The token entry time has also been reduced from 2 minutes to 30 seconds. |
MFA powered by IntelliTrust | This release includes support for the upcoming launch of MFA powered by IntelliTrust - a new Cloud MFA product integration for the USS platform. Look out for further product announcements soon. |
Account Management - Provisioning | The Provision Account process has been improved so that it is no longer necessary to wait until all of the requested products are provisioned. Instead, provisioning will now take place in the background freeing up the administrator to carry out other tasks within the dashboard. Note that this may mean new account Activation Links take a couple of minutes to be ready to use. Using an activation link too early will display a "Try again in a couple of minutes" message - this is normal. In addition, the account will not be visible in the Account Management section until provisioning has completed. |
Active Directory - User objects | The Active Directory / AD Objects user list now shows the users group membership. Note: this is not available if the legacy Cloud MFA product is licensed. |
Active Directory - Settings | The Active Directory connection settings now includes options for synchronising Email and Phone numbers for user objects. |
Web Security - Web Activity | Additional Filters have been added to the Web Security report to allow searching by MIME Category and MIME Type. |
Internet Explorer 11 | Support for Internet Explorer 11 has been removed. Only browsers supporting Javascript ES6 are supported. |
v2.11.0 - 1st February 2019
Web Security | The Filter Rules section has been expanded to support additional actions:
NOTE: this feature requires USS Gateway v1.32 and above. |
Reports |
|
Bug fixes |
|
v2.10.1 - 29th January 2019
Bug fix | The Message Rules filter in the Email Activity report no longer displays an error message |
v2.10.0 - 23rd January 2019
General | A new System Status link has been added to the login page and a new System Status page has been added to the Status section. |
General | The Products section menu is now collapsed by default. |
Web Security | The Filter Rules and Feature Controls sections have been improved for better usability and performance. The rule editor now opens in the main tab rather than in a floating window. |
Web Security | From the Filter Rules section, when adding a Custom URL match it is now possible to edit the Custom URL category/patterns without leaving the rule editor. |
Email Security | The Message Rules and Connection Rules sections have been improved for better usability and performance. The rule editor now opens in the main tab rather than in a floating window. |
Email Security | It is now possible to multi-select messages in the quarantine to release, add to safe list or add to deny list. |
Bug fixes |
|
v2.9.0 - 27th December 2018
Email Security | It is now possible to use the USS AD Connect service to power user synchronisation in the Email Security product. This requires AD Connect 1.4 client software to be installed and your Email Security license to be updated to use the USS AD store. Existing customers please discuss migration with your service provider. |
Email Security | A new Executive Tracking feature has been added to combat spear phishing and CxO fraudulent emails. Using details synchronised from Active Directory (AD Connect 1.4+ required), the new Executive Tracking condition will automatically detect, using fuzzy logic algorithms, variants of users' real names within the senders' email headers, to detect simple but effective attempts to impersonate key company officials. The condition can be used in conjunction with any of the existing actions, such as Quarantine, Add to Subject, Notify, etc for complete flexibility. This is not active by default. |
Email Security | A new Group Management section has been added to Email Security for viewing groups from Active Directory and to manage manually created ones. Groups can also be flagged for "Executive Tracking" meaning all users in the group will be used by the new condition described above. |
Email Security | The Mailboxes section has been enhanced to support group membership and adding custom variants for use with the Executive Tracking condition. For example, if there is a specific name that someone is known by, it can be manually added as a variant for the mailbox and this will be taken into account by the Executive Tracking condition. Mailboxes can also be included or excluded from Executive Tracking from this section. |
Email Security | A new Nearby (Cousin) Domain feature has been added to combat targeted attacks using your own corporate brand names that at first glance appear legitimate. The new condition uses the Levenshtein distance algorithm to detect how similar the sender domain is from one of your own corporate domains. Based on the result, any of the existing actions such as Quarantine, Add to Subject, Notify, etc can be used for complete flexibility. For example, if your corporate domain that is protected with Email Security is called and a sender emails you from - the distance is 1 which is very small and suggests it is extremely similar but not identical to your real domain. In this case, you may want to add a warning to the message or quarantine the mail for review as it is potentially suspicious. This is not active by default. |
Mac OS X Agent | An updated version of the Mac OS X Agent is available to bring key feature parity with the Windows agent:
Early access to this version is available through your service provider. |
Bug fixes |
|
v2.8.1 - 10th December 2018
Partners - License Management | Partner accounts are now restricted by default:
|
Supported Browser warning | A warning message will be displayed if you try and access the dashboard with IE11. See Supported Browser page. |
Email Security - Message Rules | Updated to be consistent with Web Filter Rules:
|
Email Security - Email Activity |
|
Bug fixes |
|
v2.7.0 - 23rd November 2018
CASB | Added image content scanning to files uploaded via connected Cloud Storage apps in API mode. The following image categories are supported:
This is configurable in the Image Scanning section under Cloud Application Security |
Reports - Cloud Activity (API) | Added new Threat Count filter to return only results that contain a minimum number of threats |
Reports - Cloud Activity (Inline) |
|
Bug fixes |
|
v2.6.0 - 16th November 2018
Reports | All of the chart visualisations have been updated for better usability and accuracy with drill-down and zoom. The charts also now support download to PDF or image and they support a custom time range |
Reports | Added a new product "Extended Web Reports" which provides additional charts by Active Directory user group for the Web Security product.
|
Reports - Web Activity | A new "SYSTEM" category has been added to the Web Categories selector containing the following options:
|
Provisioning and License Management | The new "Extended Web Reports" product can be added during provisioning or license management |
Products | The navigation menu is now expanded by default for faster access to configuration sections |
Web Security - Filter Rules - Warn & Quota final actions | The minimum configurable value for the "Allow For" setting is now 5 minutes |
Web Security | Added a new ICAP node in Tokyo, Japan for improved coverage in Asia-Pacific |
Web Security - USS Gateway | Version 1.1.30 is now available for download:
Existing customers can follow the upgrade steps to migrate from 1.0.x Version 1.0.58, for existing Ubuntu 14.04 versions of the USS Gateway, is now available as an upgrade package. This includes:
**The 1.0.x branch is now in maintenance mode only.** |
Bug fixes |
|
v2.5.0 - 26th October 2018
Account Management | This section has been redesigned to make it easier for partners to manage their child accounts.
|
Charts |
|
Reports |
|
Unblock Requests |
|
Email Security | Implemented a new "URL Scanner" rule condition which scans URL's in the message body at delivery time for known threats. |
Email Verification |
|
Provisioning |
|
Web Security - Filter Rules |
|
Bug fixes |
|
General | The dashboard now shows the version number (bottom left) which if clicked opens the What's New? page |
5th October 2018
Web Security | The "Web Categories" list has been grouped to make administration easier. The list is now presented as a tree allowing for quick selection of entire groups or individual categories. This updated list is available in the Filter Rule Builder and the Web Activity report. |
Email Security | The Global Quarantine is now refreshed when a message is released using the Safe or Deny option. |
Email Security | A new "URL Scanner" condition has been added to Message Rules which scans email messages for malicious web links at delivery time. The condition will return a result of "Threat" or "Clean" which can be used to trigger an additional action, such as adding to the spam score, quarantine, notify, etc. |
Reports |
|
License Management | The "Trial" column has been renamed "Status" |
2nd October 2018
Agent Configuration Profiles | Now able to manage Gateway Anti-Malware and Image Analysis products on behalf of a child account. |
1st October 2018
Image Analysis | A new "Image Analysis" product is available to add real-time image content scanning to the Gateway*. Added:
* An upgrade to the Gateway virtual machine system software is required. |
Deployment | Added Search by agent name, GUID and version number. |
Deployment | Added multiple delete option to remove agent records that are no longer required. |
Email Security | Added multiple delete option to the Global Quarantine. |
Web Security | Changed the "Duration" slider to be a numeric entry field based on seconds, to allow for more granular queries to be made. |
Reports | Added new "Collaboration" options to the "Action" filter on the App Activity (API) report. |
Reports | Added a new "Delivery Delay" option to the "Delivery Status" filter on the Email Activity report. If used, a new "Find Related Messages" option is available to find all results related to a particular delayed message for easier troubleshooting. |
Reports | Added a new "(Block Uncategorised Sites)" option to the "Filter Rules" filter on the Web Activity report. |
Bug fixes |
|
24th September 2018
Cloud MFA | Unable to lock/unlock an MFA user if a phone number has been set. |
7th September 2018
Web Security | Implemented the Feature Controls section that allows you to configure rules to apply features such as Google, Yahoo!, YouTube and Bing Safe Search, YouTube for Schools mode and Google App domain restrictions. |
Web Security | Added the ability to set a description for Filter Rules and Feature Control rules. |
Web Security | Added a password strength meter to the admin password field in Agent Configuration profiles. |
Web Security | Added a new Bypass pattern type to allow bypassing source MAC addresses from authentication (Gateway only - new release pending). |
Email Security | Messages in the Email Quarantine can be previewed by clicking the subject text. |
Cloud App Security | Now logging Download events in API mode. |
Devices & Groups | Added a "Devices & Groups" section to Products for managing devices. Includes options to import from CSV, IP range or CIDR. |
General | Enabled the "View Analytics" button in Quick Lookup and "Super User Access" now opens in a window. |
3rd September 2018
Email Security | Bug fix for the Global Quarantine section |
27th August 2018
Email Security | Support for DKIM and DMARC has been added to the Email Security product. DKIM public key can be managed in the Domains section and you can now use the new DKIM and DMARC rule conditions and actions to configure the desired behaviour for your domains. New rule conditions:
New rule actions:
|
Email Security | Added a new condition "Protected Attachment" condition for detecting password protected archives. |
Email Security | The "Preview" option in the Email Digest (click the subject of an email in the digest) now has buttons to Release and Safe or Deny the sender, domain/IP from the preview page. |
Products & Reports | The active tab that you are working in is now remembered when you switch between Products and Analytics (Reports) section as a partner level account |
Reports | The Email Activity report now converts the Timestamp (Local) time to the browser local time, rather than the mail server delivery local time |
9th August 2018
Reports | Added a section to create Report Schedules using a calendar view for ease of management. Schedules allow saved reports to be sent on a regular interval (hourly, daily, weekly, monthly) to one or more recipients, in different formats. This can also be used as an alerting system by disabling the "email empty report" option. |
Reports | Added a Malware Detections report for use by customers who have licensed the BitDefender plugin for the Gateway virtual machine (Gateway Anti-malware). |
Reports | Added Gateway Anti-malware product specific charts:
|
Account Profile | Added a Notifications section where customers can now specify individual email addresses for system, maintenance, unblock and log archive notifications. It is recommended you review and update this to ensure the details are accurate. |
Email Notifications | Updated the design and content for all of the notification emails sent by USS to use the new theme and contain more context. |
Bug fixes |
|
20th July 2018
Log Archives | Added a section to view and download Log Archives, which are created automatically based on the retention period for your licensed products. |
Reports | Updated the Search toolbar within the Analyse section. |
Email Security - LinkScan | Added an additional set of options to block on threat detection and show/hide target URL's. Also updated the names of the LinkScan options. The full set of options are now:
|
Email Security - Digest Template | The layout of the digest email has been updated:
|
Bugs fixes |
|
USS Agent for Windows Agent |
|
17th July 2018
Web Security - Unblock Requests | Added the ability to manage "Unblock Requests" from within the Web Security product section. Unblock Requests allow end-users to submit sites to be unblocked, streamlining the process for IT administrators. |
Reports | Added an additional filter for "Delivery State" to the Email Activity report. Also added mail flow direction indicators to the report and a "Delivered" column for quick review. |
Reports | The Web Hits downloadable report now includes the full URL for each request. |
Reports | Enabled the Download option for "Cloud Activity - Inline" report. |
Bug fixes |
|
10th July 2018
Reports | Added the ability to save any report you have created. This allows you to build up a library of frequently run reports which can be used by your administrator users. |
Reports | Added the ability to mark a saved report as a "favourite". Favourite reports will show up in the quick access area within the "Analytics" section. |
Reports | Optimised the "Email Activity" report so that results are returned much faster. This enhancement is also reflected in the drill down from charts. |
Reports | The "Email Activity" report now includes recipients in the CC and BCC fields by default in new searches. To change this, use the new "Exclude CC/BCC" checkbox. |
Web Security - Filter rules | Fixed the "Switch Logic" functionality so that the setting is saved correctly. |
26th June 2018
Administrators | Added a new "Administrators" option within the "Products" section for creating and managing admin users. |
Reports | Added the ability to search the "Web Activity" report based on Active Directory group. This new filter works in conjunction with Active Directory sync to allow a report to be generated based on web traffic from all users belonging to a particular group. |
AD Objects | Added the ability to manually set a phone number or email address for a particular user (if the option to import automatically is disabled in the default sync settings). |
21st June 2018
Provisioning | Added the ability to provision the Multi Factor Authentication product and manage the license for an existing account. |
Active Directory | Added an "MFA Settings" tab that allows you to configure the AD Connect agent to sync attributes used for MFA, such as phone numbers and default settings such as dispatch policy and bypass. |
AD Objects | Added "User Settings" for sync'd users that allows you to override MFA settings for a specific user, e.g. change dispatch policy, lock account, toggle MFA. |
Reports |
|
Change Password | Added the option to change your password for the USS portal |
Configure MFA Login | Added the ability to set up MFA for your USS account when logging in to the dashboard |
Agents |
|
Email Security |
|
31st May 2018
Report Downloader | A new option to download reports for Web Security and Email Security. |
Provisioning | The ability to add or remove Multi-Factor Authentication licenses. |
23rd May 2018
Email Security | Added two new charts:
|
Email Security | Changes to the Email Activity report:
|
Email Security | Added the Message Security rule condition to Message Rules for detecting signed/encrypted email. |
Email Security | Updated the Quarantine filters to reflect the search criteria currently available for quarantined messages. |
Web Security | Added the Template section to Product Configuration for managing block templates. |
Account Profile | Added a Region column to the Licenses list. |
General | Updates templates for system email messages such as address validation |
Bug fixes |
|
14th May 2018
Email Security | Hot fix to resolve an issue with drill down when clicking on a rule name containing parenthesis in a chart. |
13th May 2018
Provisioning | The "Regions" section has been renamed "Data at Rest". This is where the log data for all licensed products will reside. |
Provisioning | The "Products" section has been altered to be similar to "Manage Licenses" and to allow selection of "Region" for each licensed product. This "region" relates to where the service is based or in the case of Web Security, which filtering nodes the product will use. |
Provisioning | Block Templates are correctly migrated to the new account if using a System Account as Template. |
Email Security | New system rules "(Default) CoreService Malware" and "(Default) CoreService Phishing" have been created to provide more granularity in charts and reports. |
Email Security | New Rule Conditions added:
|
Email Security | Added new filters to the Email Activity report:
|
Email Security | Reporting has been improved:
|
Email Security | Message Detail section improvements:
|
Email Security | Improvements to LinkScan service so that links included in the label part of anchor tags are not rewritten. Use "LinkScan HTML" action value for this option. |
Email Security | Add paging to "Group Membership" condition for accounts with a large number of groups synchronised. |
Email Security | Global Safe/Deny list now allows hyphen characters. |
Email Security | Quarantine now supports Deny actions. |
Email Security | Deleting a domain now correctly removes the domain from the account. |
Account Profile | Administrator can now upload a custom logo to use for the dashboard. |
License Management | Updated to show selected Region and supports Region selection when adding a new product. |
Web Activity | The Warn count column now correctly reflects the number of hits in the visit with Warn as a final action. |
Cloud Activity (Inline) | Report now allows the link in the Captured HTTP request to be clicked. |
Agent Configuration | The "Block QUIC" setting is now sent correctly to the agent when configured (also ensure you are using the latest version of the agent software). |
Audit | Now captures Login events. |
Win / Mac Agent Profiles | The "Service Hostname" field is no longer editable. This is managed automatically by the product "Region" selection. |
Web Security | Fix applied for embedded URL scanning on Translator Sites that caused a crash with an abnormally long URL. |
9th April 2018
Mailboxes | Fix applied to allow searching of synchronised mailboxes. |
6th April 2018
General | Minor cosmetic enhancements |
E-mail Security | Notify Sender & Recipient rule actions now allow additional characters: []* |
5th April 2018
E-mail Security | Integration of the E-mail Security Administration interface, including:
|
Provisioning | Added a verify user step to the provisioning wizard |
Provisioning | System templates now inherit filter rules and categories |
29th March 2018
General | Moved "Administrators", "Active Directory" and "Keyword Lists" to the global Settings section within Products menu. |
Provisioning | Added "Support Level" to the account provisioning wizard. |
Keyword Lists | Keyword Categories has been renamed Keyword Lists and has now been made a global option for use across Web and CAS products. A new category type called "DLP" has been created for use with the CAS API mode DLP scanner. |
Active Directory | Added configuration of Active Directory domains, status updates and synchronised object viewer for users, groups and OU's. |
Web Security | Embedded scanning of URL's on known Translator and Anonymous proxy web sites. This enables you to let users access Google Translate without them being able to use it to request content from sites that may otherwise be blocked by active filtering rules. |
Web Security | Updated the list of system web categories to over 400 including new categories such as Cryptocurrency, IoT, Terrorism and Fake News. This offers much more granularity when defining web security policies. All existing rules will be automatically updated and current categories will be mapped to the new more detailed categories. Where a current category maps to multiple new categories all of the new categories will be selected |
Web Security - Windows Agent | Altered the Network Detection feature so that detected hostnames can resolve to a specific IP before triggering Network Detection rules. Requires the latest version of the Windows agent. |
Web Security | Added a "URL Lookup" tool in order to determine how a web site address is classified in the system category list. Accessible from the Filter Rules section. |
Web Security | Added the ability to report a misclassified site directly from the URL Lookup tool or Web Analyse report. |
CAS - DLP | Ability to use a custom Keyword List for scanning documents uploaded to Cloud Applications connected via API mode CAS. |
CAS - App Catalog | Search option is now operational. |
CAS - App Activity (Inline) | Added username and device (IP & MAC) columns to the report. |
USS Gateway | Maintenance release v1.0.44 is now available |
USS Agent for Windows | Maintenance release v4.0.1.3018 is now available. |
USS Agent for Mac OS X | Maintenance release v1.0.0.3053 is now available. |
v2.0 - 23rd January 2018
Gateway Profile |
|
v2.0 - 22nd January 2018
Dashboard |
|
Gateway Profile |
|
E-mail Security |
|
E-mail Security | Product Configuration section added:
|
Provisioning |
|
Licensing |
|
v2.0 - 11th January 2018
Area | Description |
Provisioning |
|
Quick Account Lookup |
|
Analyse |
|
General |
|
v2.0 - 22nd December 2017
Area | Description |
General |
|
v2.0 - 21st December 2017
Area | Description |
Agent Profiles |
|
Account Activation |
|
Dashboard | General fixes after initial release:
|
v2.0 - 19th December 2017
Area | Description |
Dashboard | Initial release of an updated user interface for the Unified Security Service, available at https://dashboard.clouduss.com. For access, please contact your Service Provider. |
v1.16.0 - 31st August 2017
Area | Description |
Cloud App Security | A new "User comforting" feature has started to be rolled out across the most popular apps in the App Catalog. This feature mimics the native SaaS/App error message format to display a "Blocked" notice, rather than terminating the request unexpectedly if an action has been blocked by a policy rule. This feature is designed to give users comfort that an action has been stopped rather than the SaaS/App is not functioning correctly, for a better user experience and to reduce helpdesk requests. |
Cloud MFA | New options have been added to "Local Sync" mode to allow a dialling code prefix to be specified for all synchronised users and the ability to synchronise phone number and e-mail details for each user. Custom attributes for locating the phone number and e-mail address in AD can also be specified, if required.Version 1.2 of the AD Connect agent must be installed to take advantage of these features. |
Cloud MFA | A "Bypass MFA" option has been added to the "Local Sync" mode which can be used to turn MFA authentication on or off for all synchronised users. An additional override has been added to "User Settings" allowing you to override this setting on a per user basis. This can be useful for proof-of-concept testing or to make exceptions for additional flexibility. Please note: this option is visible in the UI but will not be available to use until beta 2 of Cloud MFA (due September 2017). |
Cloud MFA | The "Authentication Analyse" report has a new search field called "Note" which allows you to search Authentication attempts for a particular outcome e.g. "Authentication bypassed", "Invalid Credentials", etc. As with all other search fields, these can be used for on-demand or scheduled reports. |
AD Connect | Version 1.2 of AD Connect is now available which supports the latest MFA product features. This is the production release of AD Connect and all customers are advised to uninstall the previous 1.0 or 1.1 version and reinstall with 1.2 (an advisory e-mail will be sent out in due course). |
USS Agent for Windows | Version 4.0.0.2669 is now available via direct download and auto-update. This version includes a fix for Bypass patterns not taking effect in Local Proxy mode. Please see the full change log for further details. |
v1.15.2 - 14th July 2017
Area | Description |
Settings | The Active Directory Add/Edit Domain dialog has been updated with a new layout. If you have an Authentication (MFA) license for your account then the MFA specific settings will now appear in a separate tab. Additional settings have been added to support the upcoming AD Connect 1.2 release which synchronises phone number and email address details from Active Directory. |
USS Agent for Windows | Final release candidate v4.0.0.2591 is now available to download. This concludes the beta phase. |
USS Agent for Windows | A new "Strict SSL/TLS mode" checkbox has been added. If enabled, the agent will reject old style ciphers such as rc4 and rc4-md5. This is only compatible with v4.x of the USS Agent for Windows. |
USS Gateway | Updated the root CA certificate database to improve access to HTTPS sites when SSL Interception is enabled. |
USS Gateway | System logs are cleared after 30 days to preserve disk space. |
v1.15.1 - 15th June 2017
Area | Description |
Login | Updated the splash screen image. |
Reports | Only supported columns on the Web Analyse report can be used to sort the results. |
Reports | Allow searching for keywords containing single quotes and fixed an issue with scheduled/downloaded reports that contain special characters. |
USS Gateway | Added an "Advanced" configuration section containing options to fine tune the performance of the gateway. The new options include:
|
USS Gateway | The Captive/Guest Portal now redirects to the original web site visited by the user (if available) unless an explicit Redirect URL is specified in the Gateway Profile Configuration. |
USS Gateway | Changes to the Network Configuration that are made after installation, such as DNS servers and hostname, are now correctly applied to the gateway. |
USS Gateway | The version number is now displayed on the Overview / Configuration section. |
v1.15.0 - 31st May 2017
Area | Description |
Filters | Added a new final action called "Warn" to the rules engine which is similar to "Block" except it enables the end-user to access the blocked page by clicking a Continue button. This is also known as a "coaching mode" as it helps to train end-users about web sites that may violate an Acceptable Usage Policy but gives them freedom to proceed if they acknowledge the risk. The "Warn" final action comes with a new $WARN$ placeholder which allows the button to be placed anywhere in a custom template. The amount of time an end-user can spend looking at a site that matched the "Warn" final action is also configurable. |
Reports | The "Warn" final action column has been added to the "Web Analyse" report and a new Web Category called "Warning Bypassed" can be used to report on Web sites that have been accessed by clicking through the warning page. |
Reports | The Start/End search fields are no longer restricted to the default retention period for each product. This allows customers with longer retention periods to search older data. |
Reports | The "Overview" button has been changed to "Explore" and moved down in the menu. The "Analyse" option is now the first to load when clicking the "Reports" button - as this is the most used option in the "Reports" section. |
Reports | The "Add Chart" window is now longer and shows the charts grouped by product for easier selection. |
Reports | Changed the "Web Analyse" report so that columns specific to a web hit are only visible when a Visit is expanded. These columns are: Device Type, Tag, Feature Control Name, Filter Rule, Keywords. |
Provisioning | It is now possible to find a parent account when provisioning or moving an existing account by typing the first few letters of the account name. |
Windows Agent Configuration | The "Local Proxy with Driver Interception" mode is now the default mode in the Default Windows Configuration profile for newly provisioned accounts. |
USS Gateway | Now correctly supports the 206 "Partial Content" HTTP response code. |
USS Agent for Windows | The latest v4.0.0.2497 beta (GA release is expected in June 2017) release includes the following changes:
This version of the agent is available for all customers to try via the usual Download link. |
v1.14.0 - 11th April 2017
Area | Description |
Web - Categories | Bypass Categories can now be applied to either explicit proxy connections, Captive Portal connections, or both. This allows you to maintain conditional bypass rules based on how the user is connected to the proxy. |
USS Gateway | SSL Intercept mode now has additional flexibility - it can be enabled for proxy connections, Captive Portal connections, enabled for both or disabled. Domain level visibility and filtering is available even if interception is disabled. |
USS Gateway | Web access via the Captive Portal is now logged and filtered at the domain level even if SSL Intercept has been disabled via a Bypass Type, which means customers can disable SSL Interception for certain devices, networks or destination domains and still maintain a level of visibility and control. |
USS Gateway | A new Bypass Type has been added - "Bypass authentication for destination domain". This is particularly useful for Java applet based web applications that are not compatible with proxy server authentication, or to anonymise access to sensitive web based sites/applications. |
USS Gateway | It is now possible to configure the proxy to use the X-Forwarded-For header which may be useful for some remote web servers/applications. The supported options are "delete" (default), "on", "off", "truncate" and "transparent". |
v1.12.0 - 30th March 2017
Area | Description |
Filters | Added a "Time Quota" feature to the rules engine which is implemented as a new Final Action for a rule. If Quota is enabled, on a per rule basis, you can specify the amount of time in the quota and the template to use if the quota is exceeded. Web traffic that the quota is applied to appears with the "Time Quota" category in the Web Analyse report. |
Filters | Added a "Match Logic" option to Step 3 of the Rule Editor so that AND or OR logic can be applied to all of the selected match types, allowing for more flexible rules to be created. Previously, all matches used OR logic only. |
Filters | The "Devices" condition now shows all of the devices imported into the Devices & Groups section. |
Reports | Added the option to search Web and App Analyse reports by Filter Rule name. For Web Analyse, you can also use this feature to search for uncategorised sites that were blocked. |
Reports | Added additional columns to the App Analyse report for Browser, Agent, Country and Filter Rule name. |
Reports | Scheduling system has been changed so that only Saved Reports with a similar relative timespan to the schedule interval can be attached. |
Reports | An e-mail notification will be sent to the configured "Notify E-mail" address once log data has been archived according to the account retention period. |
Windows Agent Configuration | The Windows Agent Configuration profile now supports "Local Proxy with Driver Interception" mode for the upcoming version 4 release of the Windows Agent (contact your account manager to participate in early beta) |
v1.11.0 - 9th February 2017
Area | Description |
Reports | Added a "Hostname" field to the search criteria and a "Device (Host)" result column to the Web, Apps and Malware analyse reports, to allow reporting on web activity based on device hostname. |
Settings | Import devices via CSV to more easily register devices (hostname, IP and MAC address) with USS. |
Settings | Import IP addresses via range or CIDR to more easily register networks for use in filtering policies. |
v1.10.0 - 25th January 2017
Area | Description |
Settings | The AD Connector service for Local Sync mode is now available in public BETA. The AD Connector can be installed on a local Windows server and synchronises Active Directory objects from the local network to the USS cloud. It does not require a port opening through the customer firewall. |
Reports | Added a Log Data section to Reports / Archives which allows customers to download their log data in CSV format once the product retention period has been exceeded. To receive an e-mail when new archives are available, ensure you configure the "Notify E-mail" option in Account profile. |
Gateway | For advanced users, a pre-override file is now available for customising proxy server configuration on the USS Gateway. See the Advanced section for further information. |
Mac OS X Agent | The USS Agent for Mac OS X now correctly reports the username if the Mac is joined to a domain but logged in with a local user account. |
v1.9.2 - 10th January 2017
Area | Description |
Login | New login splash page. |
Web - Unblock Requests | Added an Unblock History option to view past requests that have been processed. Also improved duplicate handling and preventing end-users submitting the same request multiple times. |
Web - Categories | Improved pattern duplicate checking for URL, Bypass and Keyword Categories. |
Agent (Windows & Mac) | Added a new configuration profile option for "Update Check Interval" which allows you to configure the number of minutes between checking for new software updates. |
Agent (Windows) | Added two new configuration options, "Capture MAC Address" and "Capture IP Address" so that these details can be excluded from reporting e.g. for privacy reasons. |
Settings - Account Profile | Improved layout and added a vertical scrollbar. |
Settings - Active Directory | Local Sync now requires a username and password to be specified. |
Partner - Accounts | It is now possible to search for an account by ID rather than just name. |
v1.9.0 - 23rd December 2016
Area | Description |
Web - Unblock Requests | Feedback mechanism for streamlining end-user requests to "unblock" sites that have been blocked by their Filter Rule. The feature is enabled through a new Web Template placeholder, $UNBLOCK_FORM$ and managed through the new Web / Unblock Requests section by the administrator. |
Web - Prevent Law (UK) | For UK organisations bound by the Prevent Law e.g. schools, local government, police, healthcare, etc the ability to block the police monitored list of terrorist content (Web Sites) can now be enabled on an account basis by the service provider. Once enabled, the list of web sites will be automatically blocked and can be reported on by the administrator via Web Analyse. |
Web - Filter Rules (CAC) | New "Action Risk Level" match option allows Cloud Application Control based on the risk level of the cloud action. This allows the administrator to control access to Cloud Application activity (e.g. file uploads, sharing, etc) that has been deemed a certain risk level, either by default or by the administrator customising the App Catalog settings. The new match option can be used in isolation or combined with an existing Specific or Generic cloud application action match. |
Apps - Custom Domains | The App Catalog has been extended to support multiple domains for Cloud Applications, for cases where customers are using Cloud Applications running on their own domain names. |
Web - Filter Rules | The Rules Engine now enforces the Final Action for all requests captured by the conditions if there are no Matches configured in the rule e.g. allows for simple creation of a "block all" rule |
Web - Keywords | Added a new "Add & Create New" button to the "Add Pattern" dialog to allow faster entry of multiple patterns. |
Partner - Accounts | It is now possible to update account licenses and profile information for a child account even if the child has opted out of Partner Management. |
Agent (Gateway) | Fixed a problem with the Captive Portal caused by the inclusion of the local loopback interface in the firewall rule used for intercepting requests. |
v1.8.0 - 7th December 2016
Area | Description |
Settings | Improved the Active Directory domains section with a new layout and support for the upcoming "AD Connector" push agent. Administrators can choose between Cloud Sync (existing method) and Local Sync (AD Connector method – when available). |
Web - Policy | Added a new Keyword Filtering module that can be incorporated into filter rules, which allows matching URL's or captured app data against a list of pre-defined Keyword Patterns. This allows for monitoring or blocking search engine terms, URL's, file extensions and postings on Social Media. |
Web -Categories | Added a new Keyword Categories section for managing lists of categories and patterns for use with the Keyword Filtering module. Categories of patterns can be used specifically with URL's, specifically with captured App Data or both. Categories also have a logic setting to determine if any one or all patterns in the category must match. Patterns can use matching logic such as "contains", "exact match", "begins with", "ends with" and negate (if more than one pattern exists). |
Reports | Introduced a new style for map based charts such as "Top Cloud Application Locations" which makes it easier to see heat maps and will fit all heat maps into the chart view using auto-zoom. Standard and terrain views also now supported. |
Reports | Extended Web and App analyse reports to include new search criteria and result columns for Keyword Categories and Keyword Patterns. Keyword data can also be used in exported or scheduled reports. |
Reports | Added a new "Top Keyword Categories" chart for use in the Global and Web dashboards. |
Reports | Improved the "More Information" dialog for individual Web Visits and Hits with a new layout and split the information into Request, Filter and Meta sections. |
Gateway | Improved ICAP server selection algorithm which determines the best ICAP server to use when there are several close by. |
Agent (Windows) | Signed driver for Windows 10 which is compatible with SecureBoot / UEFI BIOS. |
Agent (Windows) | Added a warning message if DeviceGuard is enabled on Windows 10 Enterprise / Server 2016. |
Agent (Windows) | Support for Microsoft Edge on 32-bit Windows 10. |
v1.7.0 - 21st November 2016
Area | Description |
General | Added a "What's New?" link for displaying the most recent change log |
General | Updated EULA to 1.2 |
General | Child accounts now inherit the theme from the parent account that provisioned them |
General | There is no longer a flicker effect when using a Theme logo that is hosted remotely. Maximum length of URL also increased. |
General | Integrated the Online Documentation into the user interface, with a ? icon available in most sections |
General | Various minor cosmetic changes. |
Reports | Large result sets can now be converted to one-time CSV downloads straight from the Analyse report |
Reports | It is now possible to Pause a scheduled report |
Reports | It is now possible to save a report without having to run it first e.g. for creating scheduled reports |
Reports | Added the Gateway Anti-malware option to the Partner Reports section |
Reports | Updated the License Statistics chart layout |
Reports | Changed the Analyse report Search Criteria layout to make selecting and managing Saved Reports clearer |
Agents | The ICAP Hostname field has been improved to allow selecting servers by region e.g. Global, US, Europe |
Agents | The default maximum scan size for Gateway Anti-malware feature has been increased from 6Mb to 12Mb |
Settings | Users who are not Super Administrators can no longer change the Role of another administrator |
Settings | Moved the Tags option to the Web section and changed the labels on the Active Directory Add/Edit domain dialog |