February 6, 2024 Mandiant Advantage Threat Intelligence Release

New Version

• Digital Threat Monitoring (DTM) v1.150.20

New in this Release

• Cleartext passwords are shown for verified account login domains
• Account logins are shown for both verified and unverified domains
• Users can define their password policy in Compromised Credentials monitors to get more context in those alerts
• Users are able to backfill Compromised Credentials alerts based on their monitor settings
• Only the DTM Admin can download/export Compromised Credentials in the web interface
• A new Hide/Unhide button is available when a user is looking at the cleartext password field
• A new checkmark icon is shown for verified domains in Compromised Credentials alerts
• A block list has been implemented for Compromised Credentials domains so that domain and subdomain credential monitoring can be managed more easily across multiple compromised credential monitors
• Users can exclude subdomains from their Compromised Credentials monitors
• A new monitor template has been implemented for compromised credentials monitors that is simpler
• Compromised Credentials monitors have a new Summary view for viewing or editing the monitor
• A new hash icon appears before hashed passwords on Alert views
• The API for listing alerts returns alerts without buckets by default
• Relative timestamps are supported in Research Tools
• Placeholder text appears when Popular Tags are empty in an org
• Alert matching limits have been added to mitigate certain performance issues
• Matching logic for unbounded wildcards have been updated to reduce performance impact
• Up to 10 attachments for analysis can be added to an alert
• The alert status no longer changes when adding analysis to an alert

Bug Fixes

• The Alerts tab time range properly resets to "Anytime"
• Verification emails properly send emails to the requested recipient
• The application continues work when a user does not have a DTM role defined
• The alert table in Compromised Credentials buckets overflows properly
• When adding documents to the alert analysis, we correctly support documents in size up to 10 MB