August 12, 2021, Conformity—The following updates were released to Conformity on 12th
August 2021.
RTM for Azure
- You can now set up Real Time Threat Monitoring and monitor events on your Azure accounts via UI and API. For details, see:Real-time Monitoring Settings.
Organization Profile
- Conformity enables you to now set up an Organization Profile in your Conformity Account to customize default rule settings for all existing and newly added accounts to your organization. For details: see: Profiles.
CQL Filter Method
- You can now customise your search results using the Conformity Query Language (CQL) to filter and search your checks on Reports. For details, see CQL Filter Method.
Compliance
- Rule Mappings updated for the HITRUST and NIST 800-53 REV5 Compliance and Standard Reports.
Reports
- You can now include/exclude Account names on pdf reports via a new checkbox when creating reports and report configurations. For details see: Generate and Download Report.
Bug Fixes
- Fixed a bug where creating your first account using the API would display the message "Trial ends a few seconds ago" on the dashboard.
- Fixed a bug to bring the Check status returned by the API endpoints in line with the current behaviour of the UI.
- Fixed a bug where problem tickets in the ServiceNow communication channel were not resolving automatically.
- Fixed a bug where deleting profiles too quickly was logging the user out of the application
Custom Policy Updates
- There is no change to the custom policy as a result of the new deployment. The current custom policy version is 1.32. Click here to access the latest custom policy.
Conformity Bot Updates
- Fixed a bug where Conformity bot was switching between 'Success' and 'Failure' states due to throttling errors on targeted IAM Roles.
New Rule
AWS
- VPC-017: Unrestricted Inbound Traffic on Remote Server Administration Ports: This rule ensures that no Network ACL (NACL) allows unrestricted inbound traffic on TCP ports 22 and 3389.Boosted error handling to prevent outdated or inconsistent checks.
Rule Update
- IAM-070: Check for IAM User Group Membership: This rule has been updated to support success checks in order to provide a more accurate compliance score.
- Inspector-001: Amazon Inspector Findings: The rule has been optimized to reduce the likelihood of prevent throttling to ensure consistent checks.
Rule Bug Fix
- VPC-001: VPC Flow Logs Enabled: Fixed a bug where shared VPC resources resulted in false positive results for this rule.