Alert Logic Managed Detection and Response customers now have access to enhancements in the Alert Logic console that use the vulnerability instance key identifier to provide more consistent counts in vulnerability snapshots including:
- Updated Trend Chart on Vulnerability Summary dashboard
- Updated Counting for Current Vulnerability Breakdown reports
- Updated Severity filter for Current Vulnerability Breakdown reports
The live snapshot of vulnerabilities on the assets in your environment is presented in the Alert Logic console on the Exposures page and the Vulnerability Summary dashboard. In addition, the Current Vulnerability Breakdown reports provide a vulnerability snapshot as of the last data refresh.
Read on to learn more about each update.
Updated Trend Chart on Vulnerability Summary Dashboard
The Vulnerability Trend by Severity chart on the Vulnerability Summary Dashboard has been updated to be consistent with the Open Vulnerability Instance Count widget. You can find the Vulnerability Summary dashboard in the Alert Logic console:
- Click (navigation menu), and then click Dashboards.
- Click Vulnerability Summary in the drop-down list.
Note: Data in the Vulnerability Trend by Severity chart is refreshed every 2 hours.
Updated Counting for Current Vulnerability Breakdown Reports
The charts, lists, and tables in the Current Vulnerable Hosts Breakdown and Current Vulnerabilities Breakdown reports have been updated to count based on the vulnerability instance key identifier. As a result, the vulnerability instance counts are more consistent and aligned with the counts presented on the Vulnerability Summary Dashboard.
- Click (navigation menu), and then click Validate.
- Click Reports, and then click Vulnerabilities.
- Under Current Vulnerability Breakdown, click VIEW.
Note: Data in the Current Vulnerability Breakdown reports is refreshed every 12 - 24 hours.
Updated Severity filter for Current Vulnerability Breakdown Reports
The default Severity filter for the Current Vulnerability Breakdown reports has been updated to include Info severity. As a result, your Severity filter selections will be used when scheduling or downloading the report.
Note: Existing report schedules were adjusted to preserve the previous default filter selections for Critical, High, Medium, and Low severities. You will need to create a new schedule to generate a report that includes all severities.
Additional Resources
Learn more about vulnerability snapshot reporting with the following Alert Logic documentation:
Comments
0 comments
Please sign in to leave a comment.