Contents x
      Version 2.6
      • 12 Jun 2022
      • 1 Minute to read
      • Dark
        Light
      • PDF
      Contents

      Version 2.6

      • Updated on 12 Jun 2022
      • 1 Minute to read
      • Dark
        Light
      • PDF
      Article summary

      What's new in CDC Version 2.6

      February 2022

      Highlights

      • Interaction with SeeMo via command buttons
      • Expose calculation of alert risk score to enhance analyst decision making
      • Relate external playbook to multiple use cases
      • Support password-protected secure files upload
      • Editable Recommendation section

      Interaction with SeeMo via Command Buttons

      Within the SeeMo response, you will now be offered a follow-up action, which you can execute by clicking a button.

      For example, VirusTotal could include a "Reanalyse" button. If you click the button, the CLI command to VirusTotal reanalyse will be called, and a new section will be displayed to show the new data.

      This is supported in the ChatOps (Alerts and Incidents) windows, in the Enrichment pane, and in the Channel windows.

      AdaptiveCard(1).png

      Expose Calculation of Alert Risk Score to Enhance Analyst Decision Making

      An observable's score is calculated by using the weight of each enrichment and the score that it gets from it. You can now see a formula of how the observable score was calculated.

      ObservableScore.png

      Relate External Playbook to Multiple Use Cases

      You can now link an external playbook to more than one use case - rather than having to copy the playbook.

      image.png

      Support Password-Protected Secure Files Upload

      Users with an Incident/Channel Contributor role (and above) can now upload password-protected files to the CDC, to allow for more flexibility with file types.

      These files will be checked for malicious content.

      PasswordProtected.gif

      Editable Recommendation Section

      You can now update an alert's recommendation even when it is empty.

      image.png

      Bug Fixes

      • Alerts playbook - attached files are unavailable in the chat message (CYB-14114).
      • Alerts sorting by name starts from E instead of starting from A (CYB-14454).
      • There is a file upload break in the channel when reaching the maximum files limitation (CYB-14290).

      Known Issues

      • Relative time is shown instead of absolute time, for the automated playbook step result in the chat (CYB-14145).
      • For the emoji in the global search, the result is displayed as plain text (CYB-11137).
      Was this article helpful?
      What's Next