What’s New in GravityZone January 2025 (v 6.58)
February 04, 2025
On January 28, 2025, Bitdefender rolled out new functionality in Bitdefender GravityZone, a comprehensive cybersecurity platform that provides prevention, protection, detection, and response capabilities for organizations of all sizes. These features, consistent with our multi-layered security strategy, are intended to ease the workload of security analysts, administrators, and users.
What’s new for Security Analysts
In a dynamic cybersecurity landscape, security analysts are responsible for uncovering any signs of sophisticated attacks, making the invisible visible. This section describes new functionality designed to elevate the capabilities of analysts, offering enhanced tools for threat detection, investigation, and response.
Risk Management Redesign and Rollback Availability
GravityZone Risk Management provides you with a comprehensive overview of your organization's attack surface, enabling you to identify and mitigate risks across endpoints, applications, user behavior, and cloud environments. The latest release includes three updates.
To provide you with a better understanding of your organization's security posture, Risk Management has been enhanced by integrating findings associated with Bitdefender Cloud Security Posture Management (CSPM+). To view these findings, you require a CSPM+ license and a GravityZone base license that provides access to the Risk Management feature.
As a result of the integration described above, the Risk Management section in the GravityZone console has been redesigned, and several pages have been renamed for better cross-feature uniformity:
- The Misconfigurations page is now called Findings.
- The User behavior risks page is now called Identity risks.
- The Devices page is now called Resources.
- The Users page is now called Identities.
Finally, the latest update introduces increased flexibility in managing remediation actions. In case you want to revert one or more fixes applied to findings and resources, the Rollback Fix option is now available, letting you restore the state before the fix was applied. For example, if you fix the risk related to the ActiveX Installer Service (where users can install ActiveX controls only if the ActiveX Installer Service is present and configured), but you forgot to configure it, you can roll back this fix before configuring the policy setting.
Bitdefender GravityZone CSPM+ Enhancements
Bitdefender GravityZone CSPM+ ensures the secure and compliant configuration of cloud resources and services to identify and mitigate potential security risks, and misconfigurations, and manage identities within cloud environments such as Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure. GravityZone CSPM+ integrates seamlessly with your cloud providers, collecting and analyzing cloud configuration metadata without the need for agents. This agentless approach ensures zero performance impact on your workloads while providing comprehensive visibility through the Compliance Standards and Reports sections.
With the latest release, GravityZone CSPM+ now offers verification for the Digital Operational Resilience Act (DORA). This European Union regulation mandates that financial institutions implement stringent measures to mitigate IT-related incidents. With this new feature, CSPM+ extends its current support for more than 20 compliance standards and frameworks, such as CIS, PCI DSS, NIST CSF, CCM, ISO 27001, SOC 2, and GDPR. Bitdefender GravityZone CSPM+ empowers financial organizations to effectively demonstrate compliance with DORA by providing continuous monitoring, comprehensive assessments, and detailed reports with remediation instructions on how to resolve them. You can access it from the Compliance Standards page by clicking the Select a standard button.
What’s New for Administrators
With administrators constantly juggling numerous tasks and responsibilities, tools designed to make their daily tasks easier are highly appreciated. This section describes new functionality designed to facilitate the management of features responsible for prevention, protection, and detection in a defense-in-depth security architecture.
XDR Threat Actor Insights
GravityZone Incident Advisor was designed to minimize the time required to investigate and contain threats. It is available as a default landing page when an incident is selected and provides an intuitive and visually comprehensive overview of information about it.
With the latest release, the Suspected Actor section in the Incident Advisor landing page has been enhanced to display the number of incidents associated with a Suspected Actors. This information is available in the Involved in section, along with a link that directs you to the Incidents page with a pre-applied filter to display related incidents. If you want to know more about known Tactics, Techniques and Procedures (TTP) of the suspected group, you can open a new tab on the selected actor's page in Bitdefender IntelliZone directly from the Suspected Actors section.
In addition to this enhancement, an Actor filter has been added to the Incidents page. This filter allows you to filter incidents based on associated threat actors.
Security for Email Enhancements
Bitdefender Security for Email is offered as a service implemented through MX record modification. It is independent of the mail server and seamlessly integrates with cloud-based email servers such as Microsoft 365, Exchange Online, or Gmail.
The latest release introduces Google Workspace Integration enhancement. This allows for automatic synchronization of your user directory with Email Security, eliminating the need for manual mailbox configuration. It will automatically pull user and group data from your Google Workspace directory. To ensure data privacy, Secure OAuth Scopes are used to synchronize User and Group Directory, along with user attributes for filtering purposes. All synchronization occurs in read-only mode. Changes to user and group objects within Google Workspace are verified every 2 minutes to ensure up-to-date information. Detailed configuration information can be found at our Bitdefender Support Center here.
We have also enhanced the capabilities of the Outlook add-in. It provides quick access to review personal Quarantine, allows you to manage personal Safe/Deny lists, access the SecureMail Inbox, and reply to secure emails. Finally, it enables you to Report Spam and Phishing directly from Outlook. The Outlook add-in supports O365, and Outlook (Desktop, Web App, Mobile). Detailed configuration information can be found at our Bitdefender Support Center here.
Enhanced Early Access Program (EAP) Network Capabilities
Following our announcement last year, we are in the process of redesigning GravityZone Policies. This update comes with new actions and improved functionality in the new Network section, this includes Assign policy, Remote shell, Move entities, Assign Security Servers, Update Security Server, Risk scan, Run network discovery, Submit to Sandbox Analyzer, and Recovery manager. From now on, the EAP Network section covers all functionality that the existing Network page offers.
What’s new for Users
Users are the most important part of any organization, and each IT system should contribute to their daily tasks without disruptions. To enhance their efficiency, making their daily lives easier becomes more and more important. In this section, we describe functionalities specifically designed to assist users in overcoming security challenges.
GravityZone Navigation Enhancements
With the latest release, we enhanced the GravityZone navigation system by introducing new functionality and improved usability of menu entries. To facilitate bookmarking and seamless collaboration, all main menu and header menu items now have unique URLs. This allows you to open menu entries in new tabs or windows for improved multitasking, access any section directly by entering its specific URL, utilize the browser's Back and Forward buttons to navigate between previously accessed sections, and work more efficiently by easily sharing links to specific console sections with colleagues. Furthermore, refreshing the console no longer automatically returns you to the dashboard.
Summary
Bitdefender GravityZone platform stands out from the crowd, offering a one-stop solution for all your organization's security needs. As the digital landscape evolves, Bitdefender remains proactive, providing prevention, protection, detection, and response capabilities, ensuring the ongoing safety of organizations of all sizes worldwide.
To learn more about the Bitdefender GravityZone platform, contact us or a Bitdefender partner for more information. You can also start a free trial by requesting a demo here.
tags
Author
Grzegorz Nocon is a graduate of the Faculty of Physics at the University of Silesia. With over 16 years of experience in the IT industry, he currently works as a Technical Marketing Engineer at Bitdefender. A strong supporter of a holistic approach to security and passionate about solving security problems in a comprehensive and integrated way. Outside of work, an avid CrossFit enthusiast and a lover of fantasy literature.
View all postsRight now Top posts
FOLLOW US ON SOCIAL MEDIA
SUBSCRIBE TO OUR NEWSLETTER
Don’t miss out on exclusive content and exciting announcements!
You might also like
Bookmarks
