Product Update 5.11.3.0 - September 25, 2023

General Enhancements

  • Added support for non-standard email address formats for MA-SV usernames
  • Improvements to CrowdStrike Integration Event detection

Bug Fixes

  • Added additional logging information for user logins
  • Fixed an issue where Host CLI actions were unsuccessful
  • Fixed an issue where users were unable to view Action Details of Jobs on the Job Status/Job Result page after Actions were modified
  • Fixed an issue with NTLM and TLS proxy that were impacting some customers
  • Fixed an issue on Protected Theater where the virtual network service would not restart when rebooting Protected Theater
  • Updated NX security technology matching logic to improve event matching
  • Fixed an issue where changing the default language for Host CLI Actions from English broke event matching for non-Windows endpoints
  • Fixed an issue where Protected Theater was not able to validate Microsoft Defender for Endpoint (MDE) due to updated MDE URLs

Known Issues

  • Local Event Filtering works as expected but is limited to Match Action, Match Integration, and Match Events (when the latter involve Raw Events). If a rule has a Match Event condition for any field other than Raw Event, the rule does not apply to Local Events. It only applies to events from standard local integrations in MA-SV.
© Copyright Mandiant. All rights reserved
  • First Published: September 25, 2023
  • Last updated: September 25, 2023
In This Article
Related Articles
  • None
Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.