Product Update - May 2nd, 2022

New Features & Enhancements

• Improvements to TLS Inspection Implicit Bypass: For some applications that implicitly bypassed TLS Inspection (such as Dropbox) are now inspected when accessed from an Internet browser. Read more.
• Security Enhancement to Application Control Policy (CASB) to Block QUIC and GQUIC: When you initially enable the policy, a rule is automatically added to the top of Internet firewall rulebase that blocks QUIC and GQUIC traffic. This follows Cato’s security best practices.
  • If necessary, you can edit this rule based on the requirements of your account

Security Updates

• IPS Signatures:
• Malware - Clop (Enhancement)
• CVE-2022-22965
• CVE-2022-22963
• CVE-2022-22954
• CVE-2020-8218
• CVE-2020-15505
• CVE-2018-6789
• CVE-2017-6737
• CVE-2017-6736
• CVE-2014-1812
• CVE-2014-0780

• TLS Inspection: The following applications are now inspected when accessed from a browser:
  
  • Google applications (Enhancement)
  • Google Drive (Enhancement)
  • Microsoft General (Enhancement)
  • Microsoft Live (Enhancement)
  • Microsoft Azure (Enhancement)
  • Dropbox (Enhancement)

Knowledge Base Updates

• How the Cato Cloud Protects your Account from Ransomware Encryption Actions
• Configuring TLS Inspection Policy for the Account