Product Updates

Lacework agentless workload scanning just got a major upgrade. As of August 2023, Lacework customers can now use this feature to gain more visibility over their cloud estate. Agentless workload scanning can now:Support scanning of container images managed by Containerd runtime Be integrated with Google Cloud Scan multiple/secondary volumes on hosts Scan stopped instancesLacework is also rolling out advanced threat detection capabilities. Now, in public preview, customers can reduce the time between alert detection and alert generation for high-confidence events with the platform’s new Near Real-Time Alerting Solution. Visit this Docs page to see a roundup of all the month’s product releases.

Starting in July, customers with Amazon Linux environments can expect more around vulnerability management. The platform can now track Amazon Linux vulnerabilities by CVE IDs, rather than ALAS. Amazon Linux 2023 is also now supported for vulnerability scanning.Customers can benefit from loads of enhancements, now available in Public Preview. These include:MITRE ATT&CK tagging: Now in Lacework alerts, users can see MITRE ATT&CK tags that correspond with the potential threat. Amazon GuardDuty + composite alerts: Users can now enrich the platform’s composite alerts with Amazon GuardDuty data.’ Lacework + Security in Jira integration: Lacework now supports Security in Jira integrations, where you can view, prioritize, and track remediation of vulnerabilities from your active image repositories.  Visit this Docs page to see a roundup of all the month’s product releases.

In June, Lacework took steps to make risk management even easier for users.The Lacework Remediate CLI can help users swiftly resolve a wide range of compliance issues within their AWS infrastructures using a set of pre-build remediation templates. These templates assess each alert and provide command-line remediation guidance specific to that feature. Active filters now influence the Open vulnerabilities chart for hosts and containers, and all active filters on the Host and Container Vulnerability pages now propagate to CSV reports.Visit this Docs page to see a roundup of all the month’s product releases.

May 2023 saw a host of enhancements added to the Lacework platform, specifically around risk and compliance. Attack path analysis features like the “Top work items” and Path investigation” pages are now live, along with the ability to enrich attack path analysis with Kubernetes data. The platform gained a couple of enhancements around Kubernetes compliance and custom policies.This month’s release also included some enhancements around rules subcategories and routing, composite alerts, and active vulnerability detection. Visit this Docs page to see a roundup of all the month’s product releases.