Hello,

This post provides a summary of the features, issue fixes, and enhancements released in Log360 during 2024.

New Features

February 2024

Incident workbench: The Incident Workbench feature, a specialized threat investigation console providing advanced contextual analytics, was launched. It is accessible from multiple dashboards.

May 2024

Dark web monitoring: The Dark Web Monitoring feature, based on Log360's integration with Constella Intelligence, was introduced. This feature enables organizations to scan the deep continuously and dark web for leaked credentials and personal information associated with their organization, employees, and third-party vendors.

Endpoint Central integration: A seamless integration with ManageEngine's EDR solution, Endpoint Central, was released.

In addition, the Salesforce cloud environment monitoring, Global Search, and Sigma Rule Import features were also launched in May.

July 2024

PAM360 integration: A seamless integration with ManageEngine PAM360 was introduced to strengthen privileged access routines.

September 2024

PCI-DSS 4.0 & ISO 27001-2022: Out-of-the-box compliance reports for PCI DSS 4.0 and ISO 27001:2022 were released.

October 2024

NIS 2: Out-of-the-box compliance reports for the European Union's Network and Information Systems Security Directive (NIS 2) were introduced.

Issue Fixes

Here’s a quick summary of the issue fixes introduced in Log360 this year to enhance your experience.

February 2024

An issue causing errors when adding Active Directory (AD) technicians to Data Security Plus via Log360 was resolved.

June 2024

The issue of an unidentified node error in the Search Engine Management console, which occurred after migrating Log360 to a new server, was resolved. Additionally, the problem with viewing the ADAudit Plus domain OU in Device Allocation Management was addressed. The missing ADAudit Plus integration tab, which appeared after updating Log360, was also fixed.

July 2024

• Repetitive database synchronization calls were reduced to optimize heap usage. Additionally, the issue of an unknown server being added to the Search Engine Management page during the initial launch of Log360 was fixed.

• The password complexity tooltip now correctly appears when passwords that meet the requirements are pasted.

August 2024

Several issues were resolved, including automatic product version updates during service pack upgrades, incorrect allocation of decommissioned devices in EventLog Analyzer and ADAudit Plus, password change issues with special characters, display problems with logos containing spaces in file names, issues fetching restored Active Directory user objects in Centralized Technician Management, and integration failures when a child component’s server had multiple IP addresses.

September 2024

• The issue with NTLM SSO authentication was resolved.

• Fixed an issue with the domain dropdown in the ADAudit Plus and ADManager Plus tabs on the home dashboard. Resolved an issue with delegating EventLog Analyzer to Log360 technicians when the device group count exceeds 50.

• Minor bugs were fixed to improve overall performance, stability, and user experience.

• The bundled PostgreSQL database was upgraded to version 14.12.

Enhancements

A quick overview of the key enhancements introduced in Log360 throughout 2024.

February 2024

Correlation Rule Package: Log360 now includes 50+ new correlation rules to improve threat detection. These cover suspicious processes, attacker tools like Mimikatz and Metasploit, and exploitation of native binary tools, enhancing security capabilities.

March 2024

Support for Duo Security Web v4 SDK: Log360 now supports Duo Security Web v4 SDK for secondary authentication, allowing you to verify users during login. With Duo Security announcing the end-of-life for Web v2 SDK on 30 March 2024, we recommend all users upgrade to Web v4 SDK at the earliest.

Tomcat upgrade: Tomcat was upgraded from version 9.0.82 to 9.0.83, resolving the session timeout issue in Tomcat.

March 2024

Internal code refactoring and product cleanup: Refactoring of code, libraries, and files for improved performance and stability.

May 2024

Revamped compliance page GUI: The compliance page GUI was redesigned to enable better navigation and easier management of compliance reports.

Correlation rule package: Log360 introduced 16 new predefined correlation rules to enhance threat detection, including rules for detecting living off the land attacks.

June 2024

Only domains with configured technicians will now appear in the drop-down menu for the Login authentication type.

July 2024

• Bugs in the home dashboard module were fixed to improve performance, stability, and overall user experience. With the integration of ManageEngine applications from the Log360 suite, the home dashboard will now automatically display a dedicated tab for each application.

• Inline errors were introduced in the password fields.

• Minor usability enhancements were implemented in Log360 to improve the overall user experience. Additionally, the SIEM component now ensures consistent loading, even after multiple reloads.

September 2024

• The Maverick SSH library was upgraded to support OpenSSH v7.8+ SSH keys.

• A dedicated troubleshooting page was added to address errors when clicking the component app icon in AppsPane.