v10.5.2-202406252250

UTMStack 10.5.2 Release Notes
Minor changes:

• Fixed: cluster health endpoint object missing when the system has a heavy load is avoiding the page to load.

v10.5.1-202406182313

UTMStack 10.5.1 Release Notes
Minor changes:

• Updated Sophos Central integration description.
• Fixed the destination field's values on alert details.

v10.5.0-202406180925

UTMStack 10.5.0 Release Notes

This update focuses on integrating new functionalities, optimizing existing integrations, and addressing critical issues reported by our users. Our continuous monitoring and feedback process have guided these improvements, ensuring a better user experience and robust security measures.

Summary of New Features and Improvements:

New Integrations

• IBM AS400 Integration: This version introduces support for IBM AS400, allowing seamless log collection and integration into your existing UTMStack environment. The new integration leverages a new concept called "collector", which efficiently gathers logs and transmits them to the UTMStack instance for comprehensive analysis.

Integration Enhancements

• AWS and Sophos Reworking: We have reworked the integrations for AWS and Sophos, transitioning them from Python to GoLang. This significant change enhances the performance and stability of these integrations, addressing previous bugs that hindered their connectivity. The transition to GoLang not only improves execution speed but also reduces resource consumption, providing a smoother and more reliable integration experience.

Performance Improvements

• Agent Manager Optimization: We have identified and resolved an issue related to excessive memory usage by the Agent Manager. This fix optimizes resource utilization, ensuring more efficient operation and reducing the likelihood of performance bottlenecks.

Security Enhancements:

• Enhanced Denial of Service Protection: We have implemented additional security measures to further strengthen our defenses against potential denial of service (DoS) attacks. These improvements ensure the continued resilience and robustness of our platform against various threat scenarios.

General Improvements:

• Enhanced error handling and operational resilience across various modules.
• Improved user interface interactions for a more intuitive and user-friendly experience.
• Logging System Fixes: Corrected issues within the logging system to ensure more accurate and reliable log management and analysis.

This release represents our commitment to providing a robust, secure, and high-performance platform. We appreciate the feedback from our users, which has been instrumental in guiding these improvements. We continue to strive for excellence and welcome any further feedback to help us enhance UTMStack even more.

v10.4.3-202405302135

UTMStack 10.4.3 Release Notes

Minor changes:

• Fixed integration's tenant management.
• Fixes in user auditor module to capture more user creation events.
• Changes in cache management and rules updating time.
• Improved the elastic index loading in the application.
• Fixed VLAN issue on the ISO installer.
• Fixed map view on o365 dashboard overview.

v10.4.2-202405091759

UTMStack 10.4.2 Release Notes

Minor changes:

• Fixed installer compose commands that causes the agent manager container goes down.

v10.4.1-202405031218

UTMStack 10.4.1 Release Notes

Minor changes:

• Using new source of correlation rules

v10.4.0-202404241632

UTMStack 10.2.2 Release Notes

This update enhances UTMStack's stability, security, and functionality through critical bug fixes and improvements. We have focused on addressing issues reported by our users and identified through our continuous monitoring, improving the overall user experience and the application's resilience against errors and security threats.

Summary of the bug fixes included in this release:

• Dashboard and Alerts Accuracy: The Overview dashboard displayed incorrect alert values, ensuring accurate monitoring and alerting capabilities.
• Rule History and Filtering: Resolved a problem with rule history filter conditions, improving the accuracy and usability of incident rule history views.
• Integration and Alert Management: Addressed an issue where integration disconnected alerts were triggered too frequently, reducing unnecessary notifications and improving alert management.
• Incident Rules Enhancement: Added a default agent for incident rules, facilitating smoother operation and implementing incident response strategies.
• Log Explorer Stability: Fixed a crash in the log explorer query functionality, enhancing the stability and reliability of log exploration and analysis.
• Incident Response Automation: Improved incident response automation by allowing it to run in default agents, enhancing the efficiency and effectiveness of automated incident responses.
• UI Improvements: Enhancing user interface interaction and usability for Incident response creation.
• Application Stability: Addressed an Auditor module crash issue, improving the application's stability and reliability.
• Logout: Adding logout observable, ensuring users a more reliable logout process.

Security and Stability Enhancements:

• Resolved an issue with the incorrect installation command for Linux environments, streamlining the installation process.
• Enhanced error handling for operational issues, improving application resilience.
• Addressed security configuration issues, ensuring users with the role ROLE_USER maintain stable connections.
• Fixed synchronization issues related to alert properties in down data sources, providing accurate alert management.

v10.3.0-202403041523

What's Changed

• Fixed Processed logs values still in the pipeline detail view (#470) by @mjabascal10 in #481
• Bugfix/10.2/474 ad auditor is not capturing all user creation events by @mjabascal10 in #498
• 10.3 by @mjabascal10 in #496
• Bugfix Datasource's view refresh time is causing that you can't add notes and groups sometimes (#468) by @mjabascal10 in #510
• Moving changes from main to RC by @c3s4rfred in #512
• Fix email alerts after migrating to opensearch by @c3s4rfred in #515
• Updating macos guide by @c3s4rfred in #519
• Fixed Incidents "Execute command" tab is causing a console error when looking for status property by @mjabascal10 in #522
• Updating azure guide by @c3s4rfred in #524
• Updating RC with last changes by @c3s4rfred in #529
• Updating azure guide, correcting steps 6,7 and 11 by @c3s4rfred in #535

Full Changelog: v10.2.3-202402162320...v10.3.0-202403041523

v10.2.2-202402071105

UTMStack 10.2.2 Release Notes

This update enhances UTMStack's stability, security, and functionality through critical bug fixes and improvements. We have focused on addressing issues reported by our users and identified through our continuous monitoring, improving the overall user experience and the application's resilience against errors and security threats.

Summary of the bug fixes included in this release:

• Dashboard and Alerts Accuracy: The Overview dashboard displayed incorrect alert values, ensuring accurate monitoring and alerting capabilities.
• Rule History and Filtering: Resolved a problem with rule history filter conditions, improving the accuracy and usability of incident rule history views.
• Integration and Alert Management: Addressed an issue where integration disconnected alerts were triggered too frequently, reducing unnecessary notifications and improving alert management.
• Incident Rules Enhancement: Added a default agent for incident rules, facilitating smoother operation and implementing incident response strategies.
• Log Explorer Stability: Fixed a crash in the log explorer query functionality, enhancing the stability and reliability of log exploration and analysis.
• Incident Response Automation: Improved incident response automation by allowing it to run in default agents, enhancing the efficiency and effectiveness of automated incident responses.
• UI Improvements: Enhancing user interface interaction and usability for Incident response creation.
• Application Stability: Addressed an Auditor module crash issue, improving the application's stability and reliability.
• Logout: Adding logout observable, ensuring users a more reliable logout process.

Security and Stability Enhancements:

• Resolved an issue with the incorrect installation command for Linux environments, streamlining the installation process.
• Enhanced error handling for operational issues, improving application resilience.
• Addressed security configuration issues, ensuring users with the role ROLE_USER maintain stable connections.
• Fixed synchronization issues related to alert properties in down data sources, providing accurate alert management.

v10.2.1-202401291332

UTMStack 10.2.1 Release

This update addresses several critical bugs and improves the application's stability and security.
Among the critical updates are fixes to installation commands on Linux, error-handling enhancements, and updates to security configurations.

Summary of the bug fixes included in this release:

• Resolved an issue with the incorrect installation command for Linux environments.
• Fixed a bug where the application could not assign the requested address, leading to operational issues.
• Addressed a crash in the detail view alert when a data source is disconnected.
• Fixed the issue where a down data source showed an open detail in the view.
• Fixed the issue in the security configurations where users with the role ROLE_USER get disconnected.
• Fixed an issue where the properties host and IP of an alert created for a down data source override in the sync process.
• Rectified the emission issue with the logout observable.