Changelog

• Checkpoint Harmony spam and graymail alerts are no longer considered detections. They will still be enriched and available in the data lake.

• Need a quick birds eye view of your Detections? Go checkout out the new stats at the top!

• You asked for it, we delivered: Apple Private Relay 🍏 handling has been added to our verdict rules.
• You’re not using Chatops? Onboard a group today to instantly increase the effectiveness and intelligence of your Wirespeed deployment.
• Subscribe to changelog updates at https://docs.wirespeed.co/changelog/rss.xml.

• Leverage the full power of Clickhouse by using Wirespeed’s Advanced Queries. Seriously, go check out the docs for this one. Start or continue your journey to become a Wirespeed Superuser!
• Updated our user algorithm, making our directory decision making even smarter.
• Ever wonder if your mobile endpoints are responsible for more cases? You can now filter cases by “Was Mobile” to learn more about what your mobile devices are triggering.

• Custom Detections are here: use SQL to create your own custom detections.
• Jira integration added. Check out our Jira integration docs to learn how Wirespeed and Jira can stay in sync!

• Added ability for Service Providers to provide default ChatOps messaging for client teams.

• Updated verdict ordering for better prioritization
• Added TOR logins to verdict algorithm
• Fixed timeline display issues for improved event tracking

• Microsoft sign-in log processing is now generally available

• Okta sign-in log processing is now generally available
• Enhanced directory user automation rules for email domain matching
• Increased clarity of threat indicator data

• AI Case Summaries: you can now view a AI-generated summary of every case
• Added ability to ingest all assets from detection sources and option to tag them as HVT

• JAMF Protect integration has been enabled for Beta testing

Welcome to our new changelog! Items will be added here as soon as they are released.