In Case You Missed It
Last month's product updates can be found in April's communication.
Now Available
- BloxOne Threat Defense: External Networks Verification
Recently Released
- BloxOne Threat Defense: Zero Day DNS™
- BloxOne Threat Defense: RPZ Feed Revamp
- BloxOne Threat Defense: New Threat Actor Page
- BloxOne Threat Defense: Agentless Implementation Over DoT/DoH and Approved Public Subnets
Coming Soon
- NIOS 9.0.4: Advanced Multi-Cloud Discovery and Integration
NETWORKING
NIOS 9.0.4: Advanced Multi-Cloud Discovery and Integration
Coming Soon: May
Solve Multi-Cloud Challenges
Cloud teams need asset discovery, resiliency, and consistency across multi-cloud and multi-account environments to keep applications running. NIOS 9.0.4 helps integrate workloads across platforms, including read synchronization with Azure Cloud-Native DNS and multi-account sync with Amazon Route 53 for improved user experience and control. NIOS enables greater reliability and application uptime with High Availability (HA) resiliency across multi-cloud platforms to avoid single points of failure. NIOS also improves visibility across cloud assets from a single control plane with vDiscovery for multi-account AWS, AWS GovCloud, and Google Cloud Platform (GCP) vDiscovery for shared Virtual Private Clouds (VPCs).
Strengthen Critical Network and Value-Added Solutions
Networking and security teams are more effective and efficient with robust controls to manage automated asset discovery, instant access to contextual data, and encryption capabilities to help protect network infrastructure. NIOS 9.0.4 also adds robust controls to manage Network Insight polling frequency, accelerating asset discovery rates to save time or reducing discovery rates to avoid overloading system resources. NIOS further boosts contextual visibility by specifying source IP addresses in the web application programming interface (WAPI). Discovered device locations can now also be synchronized to IPAM for improved insights and faster issue resolution. Lastly, security enhancements include NIOS support for the Transport Layer Security (TLS) v1.3 encryption protocol to meet government and enterprise security compliance requirements.
Without tested and verified platform integrations and plugins, it's difficult to fast-track application deployment and ensure business continuity, user experience, and ROI. The NIOS Terraform IPAM Plugin 2.6.0 simultaneously automates the management of objects in NIOS and Terraform user interfaces to orchestrate workloads, improve accuracy, and accelerate time-to-value. In addition, the NIOS VMware IPAM 6.1.0 Plugin streamlines and automates IP address provisioning and de-provisioning for recent vRA/vRo 8.x upgrades to deliver continuity in hybrid workloads.
Quick Links for Networking
SECURITY
BloxOne Threat Defense: Zero Day DNS™
Now Available
Threat actors often register a new domain and launch targeted attacks within minutes of registering that domain. Zero Day DNS, a capability available to BloxOne Threat Defense Advanced subscribers, inspects customer network DNS traffic in near real-time to detect and block threats from domains that are registered by threat actors just minutes before being used in an attack. Zero Day DNS detection protects customers against targeted attacks like spear-phishing that leverage lookalike domains, providing the earliest defense against these attacks. Any events detected in customer networks related to Zero Day DNS will also be available as a SOC Insight.
Read more in the Configuration Guide.
BloxOne Threat Defense: RPZ Feed Revamp
Now Available
BloxOne Threat Defense for NIOS now includes a new RPZ feed structure that provides simplicity, along with user friendly names, allowing users to set the correct policies and address the growing number of available RPZs over time. With the new structure, customers can configure their policy action correctly per their risk posture and have an “at a glance” understanding of how their network is protected. This requires removing the prior configured RPZ feeds and updating them to the consolidated new RPZs. The old RPZs will be supported until December 2024, giving time for transition to the new RPZ. The old RPZs will be deprecated after December 2024. Beyond the current RPZ updates for OnPrem, the feeds on the cloud will also be updated to reflect the same feed structure around July 2024.
Read more in the Configuration Guide.
BloxOne Threat Defense: New Threat Actor Page
Now Available
To get a single view of all threat actors seen in your network, BloxOne Threat Defense now includes a Threat Actor page. Each threat actor card carries the domains seen in your environment and all the domains associated with that actor. Each domain highlighted also shows the timeline of the detection - when the domain was discovered as a threat by Infoblox Threat Intel, when the domain was observed in your environment, and relatively when the external world (any vendor listed in VirusTotal) came to know about the domain. The timeline highlights how early Infoblox Threat Intel was in discovering and protecting you from these threats. This Threat Actor page is easily accessible in Cloud Services Portal, under "Research" and within "Threat Intel."
Read more in the Threat Actor Page in CSP.
BloxOne Threat Defense: Agentless Implementation Over DoT/DoH and Approved Public Subnets
Now Available
In April, Infoblox released a feature to help BloxOne Threat Defense Business Cloud and Advanced customers secure endpoints without the need for deploying BloxOne Endpoint and/or defining public subnets (External Networks), reducing the complexity of their network architecture. This optional, agentless capability supports DNS resolution over direct, encrypted DoH (DNS over HTTPS)/DoT (DNS over TLS) protocols and unencrypted DNS resolution for customer-approved External Networks.
This feature can be used to chain/integrate a variety of solutions within the existing security ecosystem. Among the many use cases for this feature, this is a huge win for our customers who want to deploy the native Zscaler client and B1TD as a SASE solution without deploying an additional agent. The robust design of this capability supports other Secure Service Edge solutions, as well as web proxies and VPNs, making it easier for customers to achieve a more comprehensive security posture for endpoints.
Quick Links for Security
Subscribe to the Infoblox Status Page to receive real-time notifications on maintenance upgrades.
