December 2021 Releases: Change in Qualys Email Domain and New RTI for Known Exploited Vulnerabilities

Pronamika Abraham

The Qualys Cloud Platform December 2021 release includes Qualys Cloud Suite 3.9.1.0, which contains new features and important enhancements in the Qualys Cloud Platform.

Feature Highlights

Qualys Cloud Platform

Change in Qualys Email Domain

Qualys is in the process of strengthening its email security posture. As a security best practice, we are segregating the corporate email domain from the platform bulk emails by using a dedicated email domain qualys.net for our platform emails. As a result, the account management, scan notifications, and daily vulnerability feed emails that were being sent by using the @qualys.com email IDs will now be changed to @qualys.net. Customers are required to add @qualys.net to their approved senders’ lists and domains to avoid any quarantine or incorrect categorization of Qualys emails.

New RTI and QQL for Known Exploited Vulnerabilities

With this release, users can configure a ruleset to get alerts on active security threats using the new Real-Time Threat Indicator for known exploited vulnerabilities, helping users to prioritize and take quick decisions.

Additionally, the following query can be used in the Vulnerabilities tab to query on active vulnerabilities associated with known exploited vulnerabilities:

vulnerabilities.vulnerability.threatIntel.cisaKnownExploitedVulns

You can use the same QQL token to add widgets to the dashboard for a quick insight into your current threat exposure with regards to the CISA known vulnerabilities.

On the VMDR Prioritization page, select RTI from the Group By drop-down list to view the list of count of active known exploited vulnerabilities.

Show Comments (1)

Leave a Reply to Keith Seymour Cancel reply

Your email address will not be published. Required fields are marked *