Product Update - April 3rd, 2023

New Features & Enhancements

  • Cato RBI Introduces a New Way to Protect Against Web-Based Threats: Cato’s Remote Browser Isolation (RBI) service provides secure browsing by processing web browsing on a virtualization service and streaming web pages safely to the user's device. All in-browser code is executed remotely and never on the device, keeping it safe from threats such as ransomware and phishing. Instead of blocking websites or showing a warning page, RBI gives admins another option to secure user devices when browsing uncategorized sites.

  • Improved CASB Granularity with Tenant-Specific Restrictions: You can now restrict access to specific tenants as part of our CASB solution. For example, only allow access to enterprise tenants, and users can’t connect to non-business related tenants, such as private email or file sharing. This lets you set access controls and policies for specific tenants within the organization across different cloud applications.

    • The CASB engine enforces the tenant restrictions using header injection for key SaaS applications

  • IPsec IKEv2 Sites Support Devices with Dynamic IP: You can now establish an IPsec IKEv2 tunnel between the Cato Cloud and a third-party firewall or router operating behind NAT with dynamic public IP address. Cato now supports IPsec IKEv2 connections initiated by the third-party firewall or router.

  • Connect on Boot: As part of the new Always-On Policy, we have updated how Connect on Boot is configured for Windows Clients.

    • Defining Connect On Boot configuration for specific SDP users from the Cato Management Application is no longer supported

    • If Connect on Boot is disabled in the Cato Management Application, SDP users can define their own configuration from the Client. For accounts that configured Connect on Boot for specific SDP users, we recommend using this setting

    • If Connect on Boot is enabled in the Cato Management application, all Clients in your account automatically connect during device boot, SDP users can’t change the behavior in the Client

    • For migrated accounts to the Always-On Policy, see this article for more information

  • Cato Management Application Enhancements:

    • You can now edit Data Protection and Threat Protection rules in the SaaS Security API screen

    • Export all the site data for your account to a CSV file. The new Export feature is available in the Network > Sites screen

Security Updates

  • IPS Signatures: 

    • CVE-2023-23397 - For more information on Cato protection for this threat, see this blog post

    • Ransomware:

      • CryptoArch (New)

      • Monti (New)

      • RansomHouse (New)

      • Tils (New)

      • BianLian (Enhancement)

      • Clop (Enhancement)

      • Cuba (Enhancement)

      • Lorenz (Enhancement)

      • Makop (Enhancement)

      • Maze (Enhancement)

      • Midas (Enhancement)

      • Target777 (Enhancement)

    • Malware:

      • Cobalt Strike (Enhancement)

      • Emotet (Enhancement) 

  • Application Database:

    • Added more than 100 new SaaS applications (you can view the SaaS apps in the Apps Catalog)

    • Easyupload (New)

    • ChatGPT (Enhancement)

    • OpenAI (Enhancement)

    • Rakuten (Enhancement)

  • TLS Inspection:

    • ChatGPT and OpenAI have been added to global TLS bypass

Was this article helpful?

0 out of 0 found this helpful

0 comments

Add your comment