A new Scanner Appliance generation
We are happy to announce the new generation of our Scanner Appliance. Built on a new architecture on the latest technology platform, we have a new foundation in place for the future.
The new Scanner Appliance includes several updates that will improve the overall user experience and provide the latest versions of our scan engines.
The new web application scan engine is now up to date with the one used for external scans and will continue to be updated frequently as we have new releases. This will result in the latest coverage for web applications and APIs now available on the Scanner Appliance.
Support to scan web applications dynamically, which makes use of javascript, is now available, making it possible to scan much more advanced websites that are empowered by frameworks such as Angular, Vue, or React.
The systems and network scan engine have been updated to align with external scans, improving performance and stability across all your scans.
A completely revamped user interface is available in the console interface when setting up, configuring, and troubleshooting the Scanner Appliance. This will improve the experience for users and make it smoother to manage, especially in AWS and Azure which now has the user interface available through the console.
The new generation (revision 49+) of Scanner Appliance is available as a new image and requires a new installation. Due to the major update, it is not available as an update to the existing Scanner Appliance of the previous generation. The existing generation (revision 48) of the Scanner Appliance will continue to be supported until 2024-03-01.
How do I upgrade to the new generation Scanner Appliance?
Updated Recipients view for Phishing & Awareness Training
The Recipients view in Phishing & Awareness Training has received a new design that follows the rest of Security Center. This allows for a smoother workflow and user experience when overviewing all recipients.
In the next product release, there will be additional features available to view individual recipients performance over time.
New coverage for Web Application Scanning
We have added coverage for over 25 new vulnerabilities in the web application scan engine. Below are a few highlights of the new coverage this release brings:
- DNSSEC audit
- Password exposed in GET
- Potential subdomain takeover
- Missing referrer policy header
In addition to the new coverage, there have been improvements to increase accuracy across a set of detection methods to improve scanning accuracy and the corresponding result.
New Integration with IBM QRadar SIEM
With the new integration to IBM QRadar SIEM, we now enable customers to align assets and vulnerabilities from Security Center within the asset management of QRadar, making it easier to get an overview of vulnerabilities and their severity per asset inside of QRadar.
The new integration is integrated with the vulnerability data model of QRadar using the built-in AXIS scanner to populate data from Security Center. You can even customize data ingestion, as the new integration allows for a configurable setup.
How to set up integration with IBM QRadar
Get started with the IBM QRadar integration
Unified cloud scans
Cloud scans, schedules, and profiles are now unified with the other scan types as a part of unifying all scans within Security Center, which in turn is in line with our Next-Generation Vulnerability Management Platform.
This improves the management of all asset types, as scan management is available for all asset types in the same scan views.
Other enhancements
- Schedules from existing scans can now be properly created from a re-run of a scan.
- Disabled vulnerabilities are not displayed by default in scan results.
- Scan information now always references the scanner used for the scan.
- The report is now properly generated when an account IP restriction is in place.
- Support for longer tokens has been added to the JIRA integration.