Real Time Threat Monitoring for Azure, Organization Profiles, and Enhanced Reports Added

Views:

August 12, 2021, Conformity—The following updates were released to Conformity on 12th August 2021.

RTM for Azure

You can now set up Real Time Threat Monitoring and monitor events on your Azure accounts via UI and API. For details, see:Real-time Monitoring Settings.

Organization Profile

Conformity enables you to now set up an Organization Profile in your Conformity Account to customize default rule settings for all existing and newly added accounts to your organization. For details: see: Profiles.

CQL Filter Method

You can now customise your search results using the Conformity Query Language (CQL) to filter and search your checks on Reports. For details, see CQL Filter Method.

Compliance

Rule Mappings updated for the HITRUST and NIST 800-53 REV5 Compliance and Standard Reports.

Reports

You can now include/exclude Account names on pdf reports via a new checkbox when creating reports and report configurations. For details see: Generate and Download Report.

Bug Fixes

Fixed a bug where creating your first account using the API would display the message "Trial ends a few seconds ago" on the dashboard.
Fixed a bug to bring the Check status returned by the API endpoints in line with the current behaviour of the UI.
Fixed a bug where problem tickets in the ServiceNow communication channel were not resolving automatically.
Fixed a bug where deleting profiles too quickly was logging the user out of the application

Custom Policy Updates

There is no change to the custom policy as a result of the new deployment. The current custom policy version is 1.32. Click here to access the latest custom policy.

Conformity Bot Updates

Fixed a bug where Conformity bot was switching between 'Success' and 'Failure' states due to throttling errors on targeted IAM Roles.

New Rule

AWS

VPC-017: Unrestricted Inbound Traffic on Remote Server Administration Ports: This rule ensures that no Network ACL (NACL) allows unrestricted inbound traffic on TCP ports 22 and 3389.Boosted error handling to prevent outdated or inconsistent checks.

Rule Update

IAM-070: Check for IAM User Group Membership: This rule has been updated to support success checks in order to provide a more accurate compliance score.
Inspector-001: Amazon Inspector Findings: The rule has been optimized to reduce the likelihood of prevent throttling to ensure consistent checks.

Rule Bug Fix

VPC-001: VPC Flow Logs Enabled: Fixed a bug where shared VPC resources resulted in false positive results for this rule.