New Features And Enhancements In Release 97.0.0
New Features And Enhancements In Release 97.0.0
Here is the list of the new features and enhancements.
Slack Enterprise Mail Notifications
Netskope API Data Protection can now scan Slack Enterprise direct and channel messages for DLP when sent via the Slack email app. Netskope scans the body of the email only.
ServiceNow San Diego Release Qualification
Netskope API Data Protection has now validated support up till ServiceNow San Diego release.
User Behavior Analytics (UBA) Shared Credentials Policy
Standard UBA shared credentials policy allows username exceptions to prevent alerts from legitimate credential reuse by multiple users.
Google Drive Activity Support
You can now view, edit and download publicly shared Google Drive documents without sign in. Instance_id helps to identify these activities as public-link if the user fails to sign in.
Slack Share Activity Integration With Google Drive
The Slack application now supports Google Drive file sharing. When a file is shared Slack prompts to edit share permission and a Share event is generated for every file share.
Google Meet Instance_id Update
Instance_id is captured as Unauthenticated on logging into the Google Meet application without sign in. Earlier it was captured as public.
Preview Activity And Admin Access Support
Netskope supports Preview activity in the SuccessFactors application as part of Print Preview for Manage Permission Groups and, Manage Permission Roles module. Admin access activities can be previewed based on admin roles and groups. Now you can can configure policies in real-time based on Preview activity.
Support is introduced for Admin access for the following modules:
- Import Development Goals
- Employee Delta Export
- Import Foundation Data
- Manage Permission Groups
- Manage Permission Roles
- Manage Role-Based Permission Access
- Security Permission Reports
- View User Permission
- Employee Export
- Export extended user information
- Import Employee data
- Import extended user information
Global Mail eXchange (GMX) Support
GMX Create supports create file and folder activity to create a file or folder in GMX Cloud while Delete supports deleting files from GMX Cloud.
Amazon Simple Storage Service (Amazon S3) Access Denied Activity
Netskope discontinues support for Access Denied activity in the Amazon S3 application due to insufficient hits and use cases.
Google Accounts Instance Identification
- Google Workspace Application is renamed to Google Accounts.
- Supports instance identification for all authentication traffic to Google Workspace Apps or Services and Google Cloud Platform (GCP).
This feature is available while logging-in through Console and Command Line Interface (CLI) based on Login Domain or Service-Account.
Join Activity For iOS Google Meet
In this release, Netskope includes Join activity coverage for Google Meet iOS.
Microsoft OneNote Feed Support
This release supports the following functionalities in Microsoft OneNote Feed:
- Create
- Edit
- Upload
- Delete
DLP Inspection Support
The DLP engine inspects the data while editing the notes and taking necessary actions.
Limitation
The engine does not display the file name while uploading a file. However, it displays an alert with the important details.
Amazon Web Services (AWS) Browser Traffic Coverage
In this release, Netskope enhances browser traffic coverage for the following AWS applications:
- Amazon Elastic Container Registry (Amazon ECR)
- AWS Key Management Service (Amazon KMS)
- Amazon Simple Notification Service (Amazon SNS)
- Amazon Simple Queue Service (SQS)
- Amazon Redshift
- Amazon Lambda
In addition to this, Amazon Elastic Kubernetes Service (Amazon EKS) activities are mapped as follows:
| Old Activity | New Activity |
|---|---|
| CreateCluster | Create |
| CreateFargateProfile | Create |
| CreateNodegroup | Create |
| TagResource | Create |
| DeleteCluster | Delete |
| DeleteFargateProfile | Delete |
| DeleteNodegroup | Delete |
| DescribeCluster | Delete |
| UntagResource | Delete |
| DescribeFargateProfile | View |
| DescribeNodegroup | View |
| DescribeUpdate | View |
| ListClusters | View |
| ListFargateProfiles | View |
| ListNodegroups | View |
| ListTagsForResource | View |
| ListUpdates | View |
| UpdateClusterConfig | Edit |
| UpdateClusterVersion | Edit |
| UpdateNodegroupConfig | Edit |
| UpdateNodegroupVersion | Edit |
| KubectlCommand | KubectlCommand |
TSS Engine Image File Type
UC and Web UC app connectors discontinue sending image file type to TSS Engine.
Auth Proxy Custom Block Template Support
Auth proxy supports custom block template configured using Netskope UI > Policies > User Notification. To enable the feature, please contact Netskope Support with the template name as input.
Note
This is currently a limited availability feature. Contact your Sales Representative or Support to enable this feature.
Gmail Connector Enhancement
Netskope supports Create Draft activity with DLP. This feature helps to identify Data exfiltration for draft messages in Gmail.
Note
This is currently a limited availability feature. Contact your Sales Representative or Support to enable this feature.
Compromised Credentials Widget Update
Netskope enhances all widgets under Compromised Credential template with new widgets to create reports.
Application Category Modifications
With this release, Netskope updates application category for:
- Bing Translator application from Consumer to Translation.
- Google Groups application from Social to Forums.
- Blogger application from Consumer to Personal Sites& Blogs.
- WordPress application from IaaS/PaaS to Web Hosting, ISP & Telco.
Application Name Update
Netskope updates the following application names.
Note
This change does not impact the existing policies.
| Old Application Name | New Application Name |
|---|---|
| Microsoft Office 365 Suite | Microsoft Office 365 Accounts |
| Microsoft Live Suite | Microsoft Live Accounts |
| Yahoo App Suite | Yahoo Accounts |
| Adobe App Suite | Adobe Accounts |
| Atlassian App Suite | Atlassian Accounts |
| Zoho | Zoho Accounts |
| 37signals App Suite | 37signals Accounts |
| Yandex App Suite | Yandex Accounts |
| Yandex Japan App Suite | Yandex Japan Accounts |
| Citrix App Suite | Citrix Accounts |
Naming Capability Enhancement
In this release, Netskope enhanced U.S. full name detection.
Updated Image Classification Model
Netskope updates image classification Machine Learning (ML) model to enhance accuracy in the detecting images of various classes.
German Licence Entity Validator
Netskope introduces German Driver License Number Entity that uses checksum validation to reduce false positives.
New Email DLP Variables
This release supports additional email DLP specific variables that can be referenced in email notification templates. These Simple Mail Transfer Protocol (SMTP) variables include:
- SMTP Recipients: The SMTP recipients in the To field.
- SMTP Message ID: The message ID from the email header that uniquely identifies the email.
- SMTP Message Size: The size of the email body.
- Timestamp in UTC: The time in UTC format when the email was received for inspection.
These new variables enhance email DLP troubleshooting for administrators.
Limitation
If the SMTP specific variables are chosen for inline proxy traffic notifications, their value will be empty. This applies to all the variable names beginning with SMTP.
To learn more: Policy Notification Templates.
Wildcard Domain Support for Email DLP
You now can use wildcards when entering domains for your email DLP configurations on the Netskope cloud instead of listing individual domains. This enhancement reduces the email DLP configuration time for admins by accepting and validating top-level domains.
To learn more: Configure Netskope SMTP Proxy with Microsoft O365 Exchange and Configure Netskope SMTP Proxy with Gmail.
Microsoft 365 Yammer
Netskope has added support to monitor users, groups, and group memberships in Microsoft 365 Yammer. To leverage this enhancement, new permissions are requested by the Netskope CASB API app.
Note
Existing Microsoft 365 Yammer instances should be re-granted in the Netskope UI.
Newly Observed Domain (NOD) Category Support
Netskope supports newly observed domains (NOD), which capture domains observed as active in the last 30 days. Threat actors might register a domain and leave it dormant for a period of time to avoid newly registered domain (NRD) classification. Later, they can use the domain for malicious activities, such as malware hosting and phishing. Netskope doesn’t automatically categorize NRD’s and NOD’s as security risks. You must configure your policies to generate these alerts.
To learn more: Category Definitions.
User, User Group, Organizational Unit Exclusion In Real-time Protection Policies
With this release, you can exclude users, user groups, and organizational units when configuring the Source field in Real-time Protection policies.
To learn more: Real-time Protection Policies.
WebUI Non-Standard Ports
Netskope enables HTTP(S) traffic from non-standard ports (that is, any port other than 80 and 443) by default. Non-standard ports should be configured on WebUI for access methods (such as NSClient, IPsec, GRE, and so on) to forward non-standard port traffic to NSProxy.
HTTP Header Profiles
In this release, Netskope enhances the HTTP Header Profile feature with new capabilities, such as new header support, regex, and so on.
To learn more: HTTP Header Profile.
Note
This is currently a limited availability feature. Contact your Sales Representative or Support to enable this feature.
Block WebDAV Access
Netskope Cloud Real-time Protection policies now provide access control to WebDAV traffic, by providing the ability to configure WebDAV extension methods under HTTP header profiles.
To learn more: HTTP Header Profile.
Note
This is currently a limited availability feature. Contact your Sales Representative or Support to enable this feature.
Block Single Destination IP Addresses
Netskope supports applying SSL Do Not Decrypt policies and Real-time Protection policies based on destination IP addresses. Destination IP addresses can be configured in custom URL lists.
To learn more: URL Lists.
Note
This is currently a limited availability feature. Contact your Sales Representative or Support to enable this feature.
Security Posture For Workday
Note
Security posture for Workday is in limited GA. Contact your Netskope sales representative or support to get this enabled on your tenant.
As part of the SSPM portfolio, Netskope now supports security posture for Workday.
Skope IT Alert Details Panel Support
Skope IT Alert Details now supports nested view for alerts generated from Advanced UEBA and IaaS storage scans.
Custom Profile Hit
Netskope includes profile name detection for Custom Profile Hit on the Malware page.
To learn more: About Malware.
User Notification For CTEP Traffic
Netskope updated the CTEP user notification to display Security Threat Blocked instead of Non-Compliant Action.
To learn more: About IPS Settings.
Custom User Notification for CTEP Traffic
You now can configure custom notifications for users when they trigger a CTEP alert.
To learn more: About IPS Settings.
Android/ChromeOS Support For Secure Web Gateway (SWG)
This was earlier a beta feature . The Netskope Android App now supports SWG service. Web traffic can now be directed towards Netskope Security Cloud with this new version of Android App. Also, enhanced the domain and app bypass options.
Note
CASB and NPA are already supported by Android App.
