Azure Support in Cloud Scanning
Cloud Scanning, also called CSPM (Cloud Security Posture Management), identifies security risks and misconfiguration across your cloud environments, helping you to secure all areas of your services and infrastructure.
The multi-cloud scanner operates directly against the cloud vendor’s APIs, making it possible to get started quickly without any need for software or hardware.
With the additional support of Microsoft Azure, we are expanding our cloud scanning capabilities covering the two largest cloud providers in the world (Amazon/AWS and Microsoft/Azure). The new Cloud Scanning for Microsoft Azure provides over 250 different policies that we are checking across 29 cloud services. Altogether, Cloud Scanning covers 766 policies for AWS and Azure.
As a bonus, we will also help minimize Cloud Scanning through a collection of plugins that report unused AWS services and misconfigurations that increase your AWS account costs.
Cloud Scanning for Microsoft Azure is available within Security Center from today. Enjoy!
Get Started with Cloud Scanning
Because of the seamless implementation, you can get started with Cloud Scanning to secure your cloud environments in minutes. Contact your sales representative, and they will tell you more.
Contact us & we will tell you more
Support Microsoft Azure cloud services and policies
Azure cloud resources where a license is applied
Improved Performance & Stability for Scan Engines
To improve performance, stability and quality, we have improved our scan engines and we will start migrating over customers to a new scan engine for web applications, policy scans, and network scans in the upcoming weeks.
- Shorter response time when starting and updating scans.
- Improved stability for fewer scan failures.
- Improved scanning performance for faster scans.
We will begin rolling this out on a smaller scale across our customer base and continue with additional accounts over the next weeks. More information will be available on our status portal (status.holmsecurity.com).
Connectivity Notifications for Scanner Appliances
If the connectivity for a Scanner Appliance change, you can now receive notifications. Notifications can be configured per Scanner Appliance and set up with one or several recipients, allowing you to share notifications with different parties.
How do I enable notifications for Scanner Appliances?
MAC Addresses on Network Assets
Discovery and vulnerability scans performed in certain networks can sometimes identify the MAC address of the active devices within the scanned network. Whenever the MAC address is available, the network assets will have the MAC address stored together with the asset. You can view this value from the network assets manager and filter out what assets are based on the MAC address.
The MAC address will help us provide more alternatives for asset tracking in the future, not least when it comes to networks without static IPs and when IPs might change for specific systems over time.
How to find network assets using the MAC address?
General Improvements:
- Downloading devices reports from a shared link is now working properly.
- A problem with policy reports excluding some assets has been fixed.
- Deleting network assets can now be performed without first requiring them to be removed from scan results and schedules.
- Web applications now support blacklisting elements using CSS locators.
- IPv6 networks are now added properly in the asset manager.
- Fixed a problem with incorrect reminders for awareness training.
- The overview list of scans now runs exports in the background and displays the last 7 days of exported files.