Cortex XDR 3.1 and Cortex XDR Agent 7.6 Are Here!

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Community Team Member

cortex-xdr-3.1-livecommunity.png

Cortex XDR 3.1 delivers amazing new features that take management and visibility to the next level. Our new release makes it easier than ever to monitor cloud assets and normalize data from a growing number of log sources. While the groundbreaking Cortex XDR 3.0 release allows data to be gathered from virtually any source, Cortex XDR 3.1 improves upon this with better integration and insights.

 

What’s New in Cortex XDR 3.1

 

  • Cloud Inventory: Speed up investigations and improve your defensive posture by getting a detailed view of your cloud assets. Gain deep visibility into AWS, Google Cloud, and Microsoft Azure cloud assets.
  • Enhanced, Out-of-the-Box Data Collection: Extend threat hunting and investigations to Proofpoint Targeted Attack Protection (TAP) with a new Proofpoint data collector. Use S3 and syslog data collectors to ingest Cortex Xpanse, BeyondTrust, and Forcepoint logs.
  • Granular Access Control by Dataset: Address data privacy requirements with Role-based Access Control (RBAC) by dataset. Manage what types of data your Cortex XDR users can view and access.
  • Error-Resistant Parsing: Validate your parsing rules based on incoming data and view any errors with new error reporting. 
  • Asset Management with IoT Visibility: Expand asset visibility to IoT devices by analyzing NGFW traffic and enhanced application logs.

 

What’s New in Cortex XDR Agent 7.6—Block More Attacks and Improve OS Coverage:

 

  • Host Firewall for macOS 11: Granularly control network access with an updated host firewall for macOS endpoints. The new host firewall adds support for macOS 11 Big Sur platforms, along with improving rule creation and visibility.
  • Endpoint security enhancements: Prevent tampering and unauthorized access on macOS endpoints with Cortex XDR agent 7.6. On Windows endpoints, there is the option to permanently delete quarantined files. Also enforce the password strength for passwords used to uninstall the agent and block ransomware on macOS and Linux endpoints with new BTP rules.

 

For the complete list of Cortex XDR 3.1 features, check out the Cortex XDR Release Notes.

 

Feel free to share your questions, comments and ideas in the section below.

 

Thank you for taking time to read this blog.

Don't forget to hit the Like (thumbs up) button and to Subscribe to the LIVEcommunity Blog area.

 

Kiwi out!

2 Comments
L0 Member

Is anyone else seeing network issues on Monterey with agent version 7.6?  We are getting calls after the recent upgrade to 7.6 and confirmed 7.6 agent was on the endpoint.  We currently are working tickets with support for these incidents.  

L7 Applicator

@Papuga  I recommend that you start this conversation in the Cortex XDR discussion area as that area should get more visibility for Cortex XDR.

  • 3608 Views
  • 2 comments
  • 2 Likes
Register or Sign-in
Labels
Top Liked Authors