Code42 cloud release notes
Who is this article for?
Instructor, yes.
Incydr Professional, Enterprise, Horizon, and Gov F2, yes.
Incydr Basic, Advanced, and Gov F1, yes.
Who is this article for?
Instructor, yes.
Incydr Professional, Enterprise, Horizon, and Gov F2, yes.
Incydr Basic, Advanced, and Gov F1, yes.
Overview
This page lists new features and bug fixes released to the Code42 cloud. Click a month below to expand or collapse the details.
For agent release notes, see:
Subscribe to receive a monthly update of Incydr product enhancements.
March 2023
Features
Improved Code42 console experience
March 14, 2023
The Administration section of the Code42 console has a new and look feel to make managing your environment easier than ever before.
Updates include:
- Improved interface to clarify and streamline workflows on the Organizations, Users, Devices, Downloads, Agent Updates, and Deployment screens.
- New terminology to distinguish between different agent types available in your environment. These terms now appear throughout the Code42 console and the Code42 support site:
- Insider risk agent: Monitors endpoint and cloud activity to detect risk
- Backup agent: Backs up user files
- Legacy agent: Monitors endpoint and cloud activity to detect risk, and backs up user files (previously "the Code42 app")
For a complete list of affected areas, including how to complete common tasks, see Changes to Code42 console administration.
Changes affect Incydr Basic, Advanced, and Gov F1 product plans.
Incydr Professional, Enterprise, and Gov F2 product plans were already using the updated Code42 console experience.
Enhancements and updates
March 30, 2023
- Added new source and destination risk indicators for:
- Files uploaded to cloud storage, coding tools, file conversion tools, PDF managers, productivity tools, source code repositories, and web hosting.
- Files acquired from cloud storage sources, financial services, HR tools, marketing tools, and source code repositories.
- Added Reference Tools as a new source and destination category for file events.
March 24, 2023
- Added a new file event metadata and Forensic Search filter for Untrusted Slack workspaces. This new field highlights workspace names that do not match an entry in your list of Trusted activity.
- Added Network Storage as a new source and destination category to help you better identify file activity on network drives.
March 21, 2023
- The Agent registration issues page now only displays issues from the past 30 days. Older issues are automatically removed to reduce unwanted clutter.
- Added
backupSetId,planUid, andisLegalHoldfields to the Device Status CSV export. - Improvements to archive maintenance.
March 16, 2023
- The Risk Exposure dashboard now supports drilling into Forensic Search to view events for a specific watchlist.
March 15, 2023
- In the file event details, the link to download a file is now labeled Download file. Previously, it was labeled Exact match or Most recent version.
March 2, 2023
- In Forensic Search, added a new Watchlist members filter to search all events for users currently on a specific watchlist.
Bug fixes
March 21, 2023
Fixed issues where:
- Some backups that had never completed showed a last completed date of "53 years ago" instead Never.
- Removing a backup exclusion could cause the previously excluded files to still be removed during archive maintenance in rare circumstances.
- The web restore screen did not load properly for some users on legal hold.
- Issuing the
purge.pathCLI command did not return a response. (The command still worked, but the CLI did not display a success confirmation.)
February 2023
Features
Incydr SDK and CLI
February 16, 2023
The Incydr SDK is a wrapper around the Code42 APIs that provides several utility methods. You can use the SDK to develop your own tools for working with Code42 data while avoiding the overhead of session or authentication management. In addition to a Python client, the Incydr SDK contains a CLI tool extension. The Incydr SDK and CLI replace py42 and the Code42 command-line interface (CLI) for most use cases.
Printer activity detection for Windows
February 10, 2023
Early access
Windows devices now monitor print jobs, enabling detection of printed files as an exfiltration vector. (Print detection is already supported for Mac and Linux devices.)
Requires insider risk agent version 1.8.0 or later.
Enhancements and updates
February 24, 2023
- The Risk Exposure dashboard now displays up to 180 days of data (if your product plan includes 180 days of event retention). Previously, a maximum of 90 days of data was available on the dashboard.
February 22, 2023
- The Device Status Report now includes a Backup Set Name column. Including the name of the backup set in the report can help you distinguish between multiple rows for the same device.
- On the Organizations list, Users list, and Devices list pages, you can now right-click the view details icon
to open those details in a new tab. - Added new fields to the User backup report: Username, Timestamp Last Connected Archive (UTC), Timestamp Last Connected Computer (UTC), Largest Archive Size, Only Cold Storage, Cold Storage Expiration, and On Legal Hold.
February 21, 2023
- Devices using unsupported Windows 10 21H1 and macOS 10.15 Catalina will not upgrade to newer versions of the Code42 app.
- Improvements to archive maintenance.
- Other performance and stability improvements.
February 13, 2022
- Alerts now include the option to bulk dismiss all open alerts. Previously, alerts could only be dismissed in bulk for a single page, which limited dismissal to 100 alerts at a time.
February 2, 2023
- Updated the list of temporary and system files excluded from backups. On a quarterly basis, Code42 re-evaluates and adjusts exclusions to ensure unnecessary files are excluded from backups. New exclusions include:
- .tmp, .lock, .pid, and .dat files
- .sparsebundle and .sparseimage files
- ISOs, PKGs, RAW files, and memory dumps
- Virtual machines and machine image files
To see the full list of file exclusions, as well as additional global exclusions you can customize, see Files excluded from backup by default.
Bug fixes
February 21, 2023
- Fixed an issue where users were temporarily unable to add or access local backup destinations under certain circumstances.
- Fixed a rare issue where devices could unintentionally upgrade to the latest version of the insider risk agent if multiple versions were delayed or blocked.
January 2023
Features
Send Instructor lessons via Microsoft Teams
January 30, 2023
Incydr now supports sending Instructor lessons via Teams, in addition to email and Slack. This enables you to use Teams to automatically send targeted, timely educational content in response to user activity that triggers an alert rule.
For configuration instructions, see Configure message services.
Trust suggestions
January 19, 2023
Trusted activity now includes a list of the domains associated with untrusted file events that may be good candidates for applying trust. Use Trust suggestions to quickly and easily add these domains as trusted activity and remove this file activity from dashboards, user profiles, and alerts.
"File acquired from" details for cloud sync application sources
January 3, 2023
Incydr now captures source information for files downloaded to an endpoint via an installed cloud sync application. This additional source information preserves the context of where the user acquired the file, which helps you evaluate risk in future file events. Related updates include:
- Trusted Account names can now be identified as sources with high-value data. This enables you to trust uploads to a cloud account, but still apply risk to files downloaded from that cloud account and later sent to unmonitored or untrusted locations.
- Added a new File acquired from Dropbox risk indicator.
- Added new source risk indicators for files downloaded to an endpoint via an installed cloud sync application.
- File acquired from metadata now includes Source user, Source account name, and Source account type to provide more details about the source of files downloaded to a device via an installed cloud sync application.
Enhancements and updates
January 25, 2023
- Added the option to exclude file events by process. Use process exclusions to prevent Incydr from generating file events for any activity triggered by processes that don't add value to insider risk detection or investigation. See File event exclusions for details.
January 24, 2023
- The device backup status now more accurately reflects overall progress for devices with multiple backup sets.
- Improvements to archive maintenance.
- Performance and stability improvements.
January 10, 2023
- Added new file event metadata and Forensic Search filters for Untrusted account names, Untrusted domains, Untrusted Git repository URIs, and Untrusted URL paths. These new fields highlight values that do not match an entry in your list of Trusted activity.
January 9, 2023
- Improvements to archive maintenance.
January 4, 2023
- Added a new User behavior Alerts setting for risky user behaviors, including first and rare use of destinations, off hours activity, remote activity, and file extension mismatches.
January 3, 2023
Added new risk indicators for:
- Files uploaded to file transfer tool destinations
- Files acquired from healthcare & insurance sources
These additions help you better identify risk by reducing the number of file events with the Other destination risk indicator.
Bug fixes
January 24, 2023
- Fixed a very rare issue where files could not be restored for specific devices via a device restore in the Code42 console.
Previous release notes
For release notes prior to January 2023, see Previous version release notes.