IntelliZone portal

The Indicator reputation section displayed when viewing threat search results now provides a correct timestamp.

Clicking on search suggestions when performing a cumulative search in the Threat Search page no longer fails to add the item to the search box.

Other minor bug fixes.

You can now view additional information when displaying the indicator details side panel:

The indicator details side panel now provides links to related local and network indicators.

The total number of detected indicators is now displayed at the top of the Indicators tab, grouped per type.

The AI-generated threat description section now directly displays previously generated descriptions.

Fixed an issue preventing some admins from reseting user passwords.

Resolved an issue causing the Threat Search page to incorrectly display results from a previous search. This issue would occurr immediately after logging in, and when searching using a URL indicator.

An error message is now properly displayed on the Threat Search page when using an invalid query containing the cumulative search property device_type.

Other minor bug fixes.

The Threat Reports page is now available in the IntelliZone console. It provides you access to recent reports created by Bitdefender, containing information on significant trends and developments in the threat landscape.

Indicators previously identified as malicious but no longer classified as such are now displayed when viewing threat information.

New information is avaliable under the eCrime and organizations fields when displaying threat actor information.

The Graph view window now includes arrows to indicate the nature of the relationship between nodes.

You can now click on individual nodes in the Graph view window do display the a side panel with additional information.

AI generated threat descriptions are now available. You can use the feature to automatically generate descriptions for threats based on the most recent threat information available.

You can access the feature from the Threat details page.

IntelliZone users with the Company Admin roles can now view and copy the company and user ID. This information is needed for GravityZone integration.

The IOC section in the Threat details page, along with the IoC Reputation side panel have been improved.

Clicking on links under the References section in the Threat details page now opens the Bitdefender blog page in a new browser window.

You can access the window either from the Extended Threat View or from the Threat Search results.

Nodes have different icons and shapes based on their IoC type.

Link labels are displayed between nodes that indicate the actions taken by the threat when moving from node to note.

You can zoom in an out.

A new version of the Threat Intelligence API documentation is available.

You can select from the following formats when downloading reports from the Sandbox Analyzer page: HTML, JSON, JSON (summary).

The Submission details pane in the Sandbox Analyzer page now displays the following information: File type, Submission date, and Analysis date.

Performed several improvements in the way information is displayed in the Submission details pane in the Sandbox Analyzer page:

The More options button on the right side of the All submissions table in the Sandbox Analyzer page has been replaced with the Edit description button.

Editing a submission description in the Sandbox Analyzer page now shows the existing description instead of displaying a blank field.

Fixed navigation issues in the Threat Search page.

You can now download IoC related information from the Submission details panel in the Sandbox Analyzer page.

The Force detonation option is now available when using the Advanced submission feature to submit files in the Sandbox analyzer page.

The References section has been added in the Threat view window for a specific threat. When more than one reference is available, the section is displayed in the panel from the Treat search window. The section contains links for articles that are references for the threat being displayed.

Increased performance for threat information searches.

Reputation data is now available when searching for threat information using IP and file indicators.

Process indicators are now available when displaying the Threat view window for a specific threat.

You can now provide a password when submitting archived files in the Sandbox Analyzer page. The password is used to access the submitted archives.

The UI in the Actors tab has been improved. You can access the tab when viewing threat information in the Threat Search page.

Fixed several minor bugs.

A new tab is available when displaying the Submission details side panel in the Sandbox Analyzer page: IoC. The tab provides access to a comprehensive list of indicators of content provided by Sandbox for the selected submission.

API documentation specific to all services is now available and provided to customers when purchasing a license for a specific service.

The Cumulative search feature is now available in the Threat Search page. This feature allows you to combine multiple search criteria when searching for threats.

The Help and Support Page has a new and improved UI.

The TTL field is no longer being displayed for file and certificate indicators.

The IoC reputation section has been redesigned. This information is displayed whenever searching for threats using URL, domain, or clean MD5 hash IoCs.

The Advanced Feeds tab in the Preview Feeds page is now called Operational Feeds.

The Feeds Preview page is now called Preview Feeds.

You can now download Reputation Feeds previews.

IoCs present in threats that have human-analysis tag are now always displayed in relationship to those threats, regardless of their status.

IoCs that have the sinkholed tag are now always displayed, regardless of their status.

General UI quality of life improvements.

Added a new panel when viewing threats in the Threat Search page: Threat family profile.

Fixed several minor bugs.