Quick links
Release notes
- 2023
  - Nov
  - Oct
  - Sep
  - Aug
  - Jun
  - May
  - Apr
  - Mar
  - Jan
- 2022
  - Nov
  - Oct
  - Sep
  - Aug
  - Jul
  - May
  - Apr
  - Feb
- 2021
  - Dec
  - Nov
  - Sep
  - Apr
  - Mar
- 2020
  - Dec
  - Sep
  - Jul
  - Jun
  - May
  - Apr
  - Mar
  - Feb
  - Jan
- 2019
  - Nov
  - Oct
  - Sep
  - May
  - Apr
- 2018
  - Dec
  - Nov
  - Jul
  - May
  - Apr
  - Mar
  - Feb
- 2017
  - Nov
  - Oct
  - Jun
  - May
  - Feb
- 2016
  - Dec
  - Nov
  - May
  - Mar
- 2015
  - Dec

DataSecurity Plus Release Notes

All
File Audit
File Analysis
Data Risk Assessment
Data Leak Prevention
Cloud Protection

2023

Nov

Build 6126

All solutions

Enhancements

DataSecurity Plus will end support and updates for its 32-bit edition with build 6130.
A few general security updates.

Fixes have been issued for

An "out of memory" issue when there is an overload of domain users.

File Analysis

Fixes have been issued for

Two issues with alert responses:
- An issue that prevented alert responses from being triggered in instances where the solution runs out of memory.
- Files moved to a configured destination path in response to an alert will be assigned a unique identifier and renamed as <filename>_unique identifier if the destination folder has a file with the same file name. This eliminates the issue of files being overwritten.
An issue that hindered data aggregation of incremental scans for a few devices.

Endpoint DLP

Enhancements

CPU consumption has been optimized for workstations running the removable device auditing security policy.

Fixes have been issued for

An issue that caused incorrect information to be displayed in the Printer Auditing Report in instances where multiple print job requests were raised simultaneously.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

Oct

Build 6125

All solutions

Fixes

Email settings can now be saved without having to provide authentication details.
Temporary files that are created when exporting reports are now auto-deleted.

File Audit

Fixes

An issue with scheduled reports being sent as .dat files in Microsoft Outlook 2010 is now fixed.
An issue with file copy and paste events being audited in non-configured folders has been fixed.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

Sep

Build 6121

All solutions

Fixes

An issue that triggered excess Read events has been fixed.
An issue where valid network Read events were not captured has been rectified.
A memory leak issue which caused system slowdown has been fixed.
A high memory utilization issue on the agent side has been fixed.
An issue that prevented agent reinstallation in some instances has been fixed.

File Audit

Fixes

An issue where an alert was erroneously triggered for folder creations when the file size criteria is included as a rule has been resolved.
Users can only view the configured shares.
An issue where data didn't reflect in the custom reports when a few audit profiles were included has been fixed.
Admin technicians can now view the scheduled reports created by other Admin technicians without any issues.

Risk Analysis

Fix

An impersonation issue which generated excess logon events has been resolved.

Endpoint DLP

Enhancements

The File Copy and Paste Report can now be filtered based on the copy source.
The Outlook AddIn trust prompt will no longer be displayed to users.
The Outlook AddIn can no longer be disabled manually by end users.

Fixes

An issue that prevented configured workgroup workstations from being displayed in the Alert Configuration and Report Configuration has been rectified.
A fix has been implemented to track forwarded emails.
An issue where newly-added drives were incorrectly considered as USBs and were recorded as FIM events has been fixed.
Disabled workstations will no longer trigger events.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

August

Build 6120

All solutions

Features

Users can now view and analyze disk space utilization in the server where DataSecurity Plus is installed.
The retention policy for scheduled report history has been moved from the File Audit module to the Admin console, and now applies to the File Analysis module as well.
Admins can now configure Network Address Translation (NAT) devices and DataSecurity Plus' integrated Secure Gateway server to enable roaming users to securely communicate with DataSecurity Plus' central server.

Enhancement

Minor improvements have been made on the Manage Agent page to enhance user experience.

Fixes

An issue corrupting the wrapper.conf file when disk space is low has been fixed.
Sync issue between manually-installed agent UID and agent ID has been resolved.
An issue with subfolders not showing under the Monitor Object filter after refreshing shares in file servers has been fixed.
Alert mails not being sent in some cases due to a threading issue has been fixed.

File Audit

Feature

Individual reports generated within a configured scheduled report can now be viewed and deleted.

Enhancements

File sizes will now be shown under Alerts.
A provision has been given to all admin users to view configured Scheduled Reports.

Fixes

Alert mails will now show file size in their appropriate units of measurements (KB, MB, GB, etc.).
An issue with alert mails not being sent for existing alert configurations has been fixed.

File Analysis

Features

The All Shares report now shows NTFS permissions in addition to Share permissions.
Individual reports generated within a configured scheduled report can now be viewed and deleted.

Risk Analysis

Features

Users can now move and delete discovered sensitive files from within the DataSecurity Plus UI.

Enhancements

Rules have been updated to improve confidence levels and reduce false positives.
New sensitive data discovery rules have been added for South Africa, Australia, Brazil, Mexico, France, and Portugal.
Additional rules have been added to discover data regulated by HIPAA.
Users can now select which columns they want shown in reports.

Fixes

An issue with false positive events being displayed for certain rules has been fixed.
Temporary files that were not auto-deleted after data discovery scans will now be removed periodically.
The data classification process no longer changes the last modified times of files.
An issue with applying Rule, Confidence level, and Policy filters for reports has been fixed.
Folder names containing French characters are no longer skipped from data discovery scans.

Endpoint DLP

Feature

Endpoint agents can now audit events in network shares and mapped drives.

Enhancement

Common and browser-specific unwanted events are now excluded from reports.

Fixes

Alert mails will now show file size in their appropriate units of measurements (KB, MB, GB, etc.).

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

June

Build 6111

All solutions

Enhancement

DataSecurity Plus now supports modern authentication for mail settings via SMTP and API methods.

Security fix

The TFA authentication bypass security vulnerability (CVE-2023-35785) reported by Thang Nguyen has been fixed.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

May

Build 6110

All solutions

Features

Users can now configure proxy servers from their environment within DataSecurity Plus configuration to enable safe access to the internet.
Retention period of DataSecurity Plus logs can now be customized.

Enhancements

All reports, alerts, and configuration can now be set to reflect a particular time zone of user's choice.
Technician accounts locked out of DataSecurity Plus can now be unlocked by admins directly from the Technician Settings page.

Fix

Reports exported in the XLSX format now support up to 500,000 entries in one sheet.

File Audit

Feature

File Audit can now generate audit reports for NetApp servers.

File Analysis

Feature

A new report listing files and folders based on creation time has now been added to the suite of reports.
Filters have now been added to all reports to generate customized views.

Enhancement

Up to 400 files can be directly deleted from the source server via the report interface.

Fixes

Out of memory issue due to processing of large file metadata has been resolved.
An issue with scheduling on-demand reports for groups or well-known SIDs has been resolved.

Data Risk Assessment

Fixes

An issue with regex matching in spreadsheets has been fixed.
Checksum has been added to reduce false positives for UK's National Insurance number and National Health Service number rules.

Data Leak Prevention

Fix

Number of mails sent for alerts with a threshold value are now limited to avoid notification fatigue.

Cloud Protection

Features

Gateway server status auditing has now been enabled to help resolve issues faster.
Gateway servers now support accessing websites with 2-way SSL.
Gateway servers now support TLS version 1.3.

Enhancement

In the free edition of DataSecurity Plus, 2 gateway servers can now be configured.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

Apr

Build 6101

All solutions

Fix

A performance bug that caused delays when saving office documents has been fixed.

File Audit

Fix

A performance bug that caused delays when saving office documents has been fixed.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

Mar

Build 6100

All solutions

Features

Security hardening tasks are now prioritized in the new Best Practices page in the Admin Console.
An emergency patch updater will probe the internet daily for the latest security updates and apply them to DataSecurity Plus when available.

Enhancements

A new alert response script that shuts down host machines that are under threat or have certain vulnerabilities has been added to the built-in alert scripts library.
File size units can now be changed using drop-down menus in File Audit, File Analysis, and Endpoint DLP report filters.
A few changes focused on hardening product security have been implemented.

Fixes

Minor issues related to the parameters specified in built-in alert response script files are now fixed.
An issue that triggered duplicate read events is fixed.
A rare scenario which caused file servers to stop responding to SMB requests is fixed.
An issue which stopped auditing when volumes got detached is resolved.

File Audit

Enhancement

The following report filter labels have been updated for improved usability:
- File name is now Old file name
- Source is now Server name
- New File Name is now Current File Name
The alert criterion Source is now Server Name.

Fix

Email notifications will be sent without issues when new addresses are appended.

File Analysis

Fix

An issue which caused AD object mismatch when scans were scheduled for more than one server is now resolved.

Endpoint DLP

Feature

The Email Auditing report now includes the number of attachments for each entry.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

Jan

Build 6090

All solutions

Enhancements

Deleted AD objects will be updated in the UI after a domain update.
Fonts for exported and scheduled reports in PDF format can now be updated via cmdutil.

Fixes

DataSecurity Plus will now be installed in ProgramFiles and not ProgramFiles (x86).
While adding domain technicians, the name length check will be performed against the user's name as opposed to the canonical name of the object.
A bug that caused errors while exporting and scheduling reports when time zone is added to the Time Format has now been fixed.
The agent's DSPUILog files will now be stored only in [SystemDirectory]\ProgramData.
An issue that caused DataSecurity Plus to not start when agent installation fails has been fixed.

File Audit

Enhancement

The Period drop-down now shows 'Previous year' and 'Last year' time ranges.

Fixes

An issue that caused events to be collected and alerts to be triggered for deleted profiles has been fixed.
A bug that prevented users from adding cluster caps when file server licenses were exhausted has been fixed.

File Analysis

Fixes

UNC paths provided for Move responses in alerts will now be validated on input.
The Edit option will be shown only when editable scheduled reports are selected.
Alerts will no longer show details of deleted files.
The Security Principal Name will now be displayed in the All Shares reports even when it has more than 16 characters.

Endpoint DLP

Features

Endpoint DLP event archiving: Endpoint audit data older than a specified time range will be cleared from the primary database, zipped, and archived in a secondary location. Archiving allows you to manage disk space and limit database growth.
Endpoint DLP retention policy: Endpoint DLP users can now specify the duration for which they wish to store triggered alerts.

Enhancement

Users attempting to tag empty Office files will now be notified that the action cannot be performed.

Fixes

An issue in the Exclude criteria in Web Profile Configuration has been fixed.

To Upgrade: Download Service Pack New User: Download DataSecurity Plus

2022

Nov

Build 6082

All solutions

To address security vulnerabilities:

Apache Santuario jar has been updated from 1.4.1. to 2.3.0.
Apache Commons Text jar has been updated from 1.8. to 1.10.0.

Oct

Build 6081

All solutions

Fixes

General security fixes

Sep

Build 6080

All solutions

Features

Users can strengthen account security by enforcing:
- Account lockout policy that locks out user accounts in response to repeated failed login attempts.
- Password policy that defines a strict password history, length, and complexity factors.
Admins will be mandated to update their default admin account password to harden account security.

Enhancements

In-product license notifications in the free version will now include details on the number of days left until expiry.

Fixes

Postgres has been updated to version 10.21 for heightened security.
An issue where the data collection in the driver is stopped due to invalid share path is now resolved.
An issue where postgres updates failed due to the presence of certain types of .dll files is now fixed.

File Audit

Enhancements

Loaded archive data will be unloaded automatically after two days to manage disk space usage.
Users can now find unloaded archive data in audit records based on the server and time range selected.
Filters based on server, time range, and archive status have been included in the Restore Archive Events page.

Fix

An issue where users were unable to export reports in the PDF format in some rare cases has been fixed.

File Analysis

Features

File Analysis scans are now automated to run as soon as a new drive is configured.
Users can trigger specific scans instantaneously right from the UI.
Added status messages for few more scenarios in file analysis scan status window.

Data Risk Assessment

Enhancements

False positives have been reduced by adding word boundaries and separators to the regex patterns of 35+ data discovery rules.
Sensitive data can be located based on its probability of being a true value by configuring a confidence level value.
Disk space usage will now be optimized as unused temp folders and disabled shares data will be cleared automatically.
Display text will be excluded from reports by default for fresh installations to manage disk usage.
Data discovery scans will be paused when the DataEngine service fails.
Schedule history, including scan start time, end time, and current status of the scan can now be viewed for all configured servers.
Risk Analysis Tika app has been upgraded to 2.1.0.

Fixes

The irrelevant time period filter has been removed from reports and dashboards.
The free version of Risk Analysis now supports scanning 100 GB of data.
An issue where the configured domains could be deleted when its corresponding servers were configured is now fixed.
Rescan of deleted shares will be now stopped when the product restarts.

Cloud Protection

Features

Details vital to the smooth functioning of the gateway server will now be included in the daily status email notification.
Instant email notifications will be triggered when the gateway server stops or its access key is regenerated.
A lightweight backup gateway server is added to ensure continuous internet connectivity even when the primary gateway server fails.
Secondary internet data handlers will now process time-consuming traffic requests such as large file upload activities. This leaves the primary handler unencumbered to process regular connectivity requests seamlessly.

Enhancement

Users can now find gateway server status, identify and troubleshoot out of sync and configuration issues, and get notified when disk space falls below a predefined value.
Threat analytics information can now also be sourced via proxy settings in environments where direct internet access is blocked to harden security.

Fix

An issue where multiple proxy servers were not processed from the configured PAC script during proxy chaining is now fixed.

Aug

Build 6072

All solutions

Features

Users can strengthen account security by setting up two-factor authentication using Google Authenticator, Duo Security, and email verification methods for logging in to DataSecurity Plus.
The command utility can now be used to enable and disable the default admin account.

Fixes

An issue that caused the product to restart in rare scenarios has been resolved.
Unwarranted logon failures caused by RemCom during agent installation has been fixed.

File Audit

Fixes

An issue that exported reports with columns selected by admin instead of technicians is now resolved.

File Analysis

Fixes

An issue that prevents sorting by date and time in reports exported in XLSX format has been fixed.
An issue where security reports were missing for a few configured Windows file servers has been resolved.

Endpoint DLP

Enhancement

A few changes focused on hardening the product security have been implemented.

Fixes

An issue that restricts configuring previously deleted workstations from Endpoint DLP has been fixed.
An issue that caused the status column of the USB security response report to be outdated when the product is hosted via the internet is now fixed.
An issue in updating the last HTTP communication time has been resolved.
An issue where agents installed via GPO were unconfigured in some cases has been resolved.
An issue that caused the Outlook plugin to deactivate when Outlook is reopened after agent re-installation has been fixed.

Jul

Build 6071

All solutions

Fixes

Minor bug fixes.

May

Build 6070

All solutions

Feature

The use of HTTPS has been made mandatory for all customers to harden DataSecurity Plus' security infrastructure.

Enhancements

Besides Purchased, the Used license information is also added to the License Details popup.
The header of exported reports will now contain details of the criteria used, to enhance usability.
A few changes focused on hardening your security infrastructure have been implemented.

File Audit

Enhancement

The popup with in-depth details of the selected dashboard elements can now be exported.

Fixes

A navigation issue in the Configured Servers page has been fixed.
An issue that caused the temp file used for exporting reports to remain undeleted has been fixed.

File Analysis

Features

Added new widgets to the dashboard that represent:
- Top folders with junk data
- Top folders with duplicate data
- Top folders with stale data
- Top folders with non-business data
- Top folders by size
Included new reports that list:
- All folders
- Stale folders
- Unmodified folders
- Hidden folders
An on-demand report that lists files and folders with explicit permission is added.
You can now delete a file or folder from the file analysis reports within the UI.

Enhancements

The on-demand reports have been moved to a separate tab for better accessibility.
Details about the status of the DataEngine have been added to the Manage Agent page.
The event processing speed has been increased.
The agent processing speed has been optimized to keep the product temp folder growth in check.
An option to exclude objects with "No Rights" from the Effective Permissions report has been included.
The status of on-demand report scans and their outcome can now be viewed during report generation.
On exceeding the license limit, an automated alert will be triggered and File Analysis will be disabled across the configured drives.

Fixes

An issue that caused partial data in a scheduled HTML file has been resolved.
An issue that caused the duplicate file deletion from UI to be unavailable in some rare cases has been fixed.
The recurrent attempts by the agent to contact the server while it's unreachable is now fixed.
A configuration issue that arose when the server is unreachable has been fixed.
An issue that caused incorrect data in scheduled on-demand reports has been resolved.

Data Risk Assessment

Enhancements

Data discovery scan speed has been increased.
raTemp folder processing speed has been increased.

Fix

The "No data available" error while filtering reports using confidence levels has been fixed.

Data Leak Prevention

Feature

You can now configure Windows workgroup workstations in the Endpoint DLP module.

Fixes

Outlook crash issue has been resolved.
Agents deployed via GPO will now be configured automatically.
High CPU utilization issue by the data leak prevention agent has been fixed.
Minor usability issues in the printer auditing profile have been fixed.
A few minor issues in threshold-based alerts have been fixed.
An issue that caused manual data classification to fail across mapped network drives has been fixed.

Cloud Protection

Feature

The Manage Gateway Server page has been revamped to assist in detecting and debugging gateway server configuration issues. It includes:
- Sync status and comparison of Gateway Server health properties.
- Ping test to check for proper communication.
- Manual sync option between the Gateway Server and DataSecurity Plus server.

Enhancements

The access key installation and regeneration process which helps secure the communication between the gateway server and DataSecurity Plus server has been refined.
A Gateway Server uninstallation issue that left a few files undeleted in the server has been fixed.
All configuration information will be zipped before transfer to reduce the communication time between the DataSecurity Plus server and the Gateway Server.
The browser name parsing engine has been updated to include the latest user agent details.
The PAC script used in proxy chain configuration will now be fetched automatically every 60 minutes.
Rules used for file upload detection have been updated for the cloud applications under these domains:
- Microsoft 365
- Zoho
- Box

Fix

The audit data missing issue that occurred when DataSecurity Plus server restarts after a downtime in some cases has been resolved.

Apr

Build 6064

All solutions

Fixes

An issue in sending email via TLS 1.0 configuration has been fixed.
The agent health check that triggered uninstallation of the agent in some scenarios has been fixed.
Apache Log4j has been updated from version 2.17.0 to 2.17.1 to address a security vulnerability.

Feb

Build 6063

All solutions

Fixes

Tomcat has been updated to v9.0.50.
Apache Log4net has been updated to v2.0.12.
Apache Struts has been removed from the product.
An issue of missing rows in exported reports has been fixed.
A certificate issue that rendered the web console inaccessible after an update in some scenarios has been fixed.
An issue that caused build updates to fail after migrating from 32-bit to 64-bit architectures has been fixed.
A server configuration sync error triggered after manual agent installation when duplicate machine entries are present has been fixed.
An agent-side data missing issue due to empty internet FQDN value has been fixed.
A server reconfiguration issue due to a missing entry in the Manage Agent page has been fixed.

File Audit

Fixes

A missing column that triggered a 'No data available' error has been reinstated.
A graph mismatch issue in file audit reports has been fixed.
Events will be collected only in configured Windows cluster drives.

File Analysis

Fix

The LocalPath cache size has been doubled to avoid slow Metadata Scan.

Endpoint DLP

Fix

An issue that caused workstation configurations to be removed has been fixed.

2021

Dec

Build 6062

All solutions

Fix

Updated the Apache Log4j from version 2.10 to 2.17 to address the Log4j2 remote code execution vulnerability (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).

Build 6061

All solutions

Enhancement

Technicians can now be managed centrally from Log360 UI.

Nov

Build 6060

All solutions

Fixes

Data processing will now be done in batches for large data sets to avoid out-of-memory and product startup issues.
An issue that prevented users from logging out of DataSecurity Plus when the instance is integrated with Log360 has been resolved.
Product startup issues due to license file corruption have been fixed.
Postgres has been updated to version 10.17 for security fixes.

File Audit

Features

Granular control over applying custom audit policies, reports, alerts, and exclusion settings to servers in the domain, with the flexibility to choose between two types of profiles:
- Global audit profiles, which can be applied to all, or a combination of configured servers.
- Server-specific profiles, which are applied individually to each server.
An all-new, in-console help section with answers to frequently asked questions and links to detailed help documents where required.
A health status check functionality to monitor the File Audit agent and server's working, detect issues, and troubleshoot them with ease.

Enhancements

Users now have a User SID filter in reports, exclusion settings, and audit profiles.
The driver's performance has been boosted.

Fixes

The period field's calendar icon will now open the pop-up without a hitch.
An IP address mismatch that occurred in certain conditions has now been fixed.
A graph limit issue in the Server Overview dashboard has been resolved.

File Analysis

Fixes

An issue that caused a miscalculation in the number of junk files in some cases has been fixed.
Alerts older than 90 days will now be deleted to conserve disk space.

Data Risk Assessment

Feature

To avoid potential security issues and non-compliance with regulations, users can now exclude instances of policy-violating data from reports.

Fix

The issue where reparse points were followed in a loop leading to a license limit exceeded error has been resolved.

Endpoint DLP

Enhancement

A few performance enhancements have been implemented in printer auditing.

Cloud Protection

Enhancements

New reports have been added to track file upload activity in Zoho, Yahoo, and GSuite.
File upload reports now have new columns for file names and upload sizes.

Sep

Build 6054

All solutions

Fixes

A product startup issue caused by a license handling error has been resolved.
For security reasons, custom script files can be configured only if they're located in the\bin\alertscript folder.
A few security fixes have been implemented.

Build 6053

All solutions

Enhancements

The GUI now includes an applications pane for quick access to other Active Directory-related solutions of ManageEngine.*

Fixes

An issue in automatic domain discovery during initial product startup has been fixed.
A communication issue with servers having non-English names has been resolved.
The version of Tomcat server used in the product being mistakenly flagged by external tools as a vulnerability has been addressed.
Older versions of JS files have been removed.

Data Leak Prevention

Enhancements

Alert email notifications' subject and message parameters can now be customized.
Alert email messages now include client hostnames and all the critical details of events that triggered the alert.
Agent status for endpoints will now be updated automatically in the UI.
An issue in the Endpoint agent caused by Microsoft's workarounds for the Print Spooler RCE vulnerability (CVE-2021-34527) has been fixed.

Fixes

The event collection driver now works in the 32 bit version of Windows 10 without any issues.
A bug in the USB response report that caused upgrades to fail has been resolved.

Data Risk Assessment

Fixes

Issue in upgrades caused by the GDPR policy deletion has been fixed.

File Analysis

Fixes

The file types crunch is now more efficient with memory occupancy while processing data sets with a substantial number of file types.
An issue that caused inaccuracies in the list of configured drives has now been fixed.
An issue that caused a 'Limit exceeded' error for valid licenses has now been fixed.
Discrepancies between ransomware file types displayed in the dashboard and All Files report have been resolved.
Disabled file servers can now be re-enabled without any issues.

File Audit

Fixes

SIDs and user names will be displayed accurately for new users.
Renamed Cluster nodes are now updated in the UI without any errors.
Issues in starting the DataSecurity Plus service have been resolved.
Folder rename actions containing '.' will no longer be reported as file extension change events.
Issues in creating scheduled reports have been resolved.
To resolve share discovery errors, FQDN will now be used to configure non-domain file servers.
New drives can now be configured post-agent startup without any issues.
Custom reports that are renamed now display the correct names in the UI without any issues.
Scheduled reports of deleted technicians will now be removed automatically.
Out of memory issue caused due to large number of files in the event temp folder has been resolved.

*Note - The ManageEngine applications pane will be available only for fresh installations.

Apr

Build 6052

All solutions

Fixes

An issue that caused reports to overlap when scheduled to be generated at the same time is now fixed.
Notification emails sent to administrators will now contain information about servers that were added or removed only in the last 24 hours.

File Audit

Enhancements

Event processing speed is now improved.

Fixes

A performance issue in the previous build has been fixed.

File Analysis

Fixes

If the agent is not running at the time of a scheduled scan, the scan will run once the agent is available.

Data Risk Assessment

Fixes

An issue with Risk Analysis rules that caused upgrades to fail has been resolved.

Build 6051

All solutions

Fixes

Event processing speed is now improved.

File Analysis

Enhancements

Performance of the file type distribution crunch is now improved.

Fixes

Crunch data for duplicate files is now moved to Data Engine to improve performance.
A scenario which caused partial scan data to be added in File Analysis reports is now rectified.

Mar

Build 6050

All solutions

Enhancements

The DataSecurity Plus agent can now connect with the server without using VPN over the internet by providing Fully Qualified Internet Hostname.
The DataSecurity Plus database can now be scheduled for automatic daily backup using a pre-defined script.

Fixes

The agent-server communication now prioritizes the strongest cryptographic keys.
Agent-server communication can now be successfully re-established after inadvertent intervals.
X-Frame response header has been defined distinctly for all web console pages.
Scroll bar issue in the time period drop-down has been resolved.
Agent communication issue due to server names with more than 15 characters has been resolved.

File Audit

Fixes

Share paths of network drives are now displayed accurately without missing slashes in all alerts and reports.
Alert configuration script paths with spaces can now be defined without any issues.

Data Risk Assessment

Features

Users can now perform data classification on files by tagging them using classification profiles.
Data Risk Assessment can now discover sensitive data from Microsoft SQL server.

Enhancements

Most recently modified files identified by File Audit can now be scanned with priority for sensitive data by Data Risk Assessment, when the same network shares are configured under both modules.
Subfolders and file types can now be excluded from sensitive data scans.
Proximity scanning is now used to minimize false positives.
Emails notifying users on sensitive file ownership can now be sent from the Ownership Analysis page.
The Reports and Ownership Analysis UI has been optimized for easy viewing of data storage violations.
Confidence level of sensitive data occurrences is now determined using checksum algorithm and proximity scanning.
The All Records page can now display sensitive data violations with confidence level filtering.
Data displayed in the Reports page can now be viewed based on the confidence level of sensitive data occurrence.
Rules related to US drivers' license number have been added.

Fixes

Issue with increase in scanning time has now been fixed.

Data Leak Prevention

Features

User actions within USB drives including access, modification of files and execution of applications can now be controlled using the External Device Control Policy.
The use of bluetooth, Wi-Fi devices, and CD drives can now be blocked in the External Device Control Policy.
Blocklist USB devices by specifying their device instance path.

Enhancements

USB devices for which read, write or execute events are generated can now be blocked instead of blocking USB ports wholly.
USB devices can now be unblocked directly from the Incident Response Report.
Device instance path of USBs will be displayed for all events removable storage devices alerts and reports.

Fixes

Files copied from mapped drives are now displayed with network copy information.
Clipboard monitoring can now be run for all users without any issues.
Clipboard operations between MS Office applications can now be performed without any issues.

File Analysis

Feature

Users can now restrict scans to run only during non-business hours.

Enhancements

Overall performance of security scan has improved.
The dashboard has been improved to present graphs faster.

Fixes

File Analysis alert issue for the Last Modified Time criteria has been resolved.

2020

Dec

Build 6045

All solutions

Enhancement

Notification emails to administrators will now be sent only if there is an issue in the server or agent.
PostgreSQL is upgraded from 10.3 to 10.12 for security fixes.

Fixes

Chinese characters can now be loaded in the UI successfully.
A domain can be deleted and re-added without any issues.
jQuery is updated to version 3.5.1 to fix vulnerability issues.

File Audit

Fixes

Include Exclude Criteria information under alert profiles can now be displayed in Firefox.
Issues with email validation in Schedule reports configuration has now been resolved.

File Analysis

Fixes

File analysis reports will now include information of files that were previously not scanned due to invalid time attributes.
Drives added during configuration are not duplicated.

Data Leak Prevention

Fixes

Agent sync status for endpoint devices is now regularly updated in the Configured Workstations page.
Outlook email add-in can now be installed without issues.

Cloud Protection

Features

Cloud Protection module is now available as a free add-on with the Data Leak Prevention module.
Reports now include Browser/HTTP - client details from which cloud applications are accessed.

Sep

Build 6044

All solutions

Fixes

DataSecurity Plus evaluation license can now successfully be applied even when the solution is started as a service.
The agent now delivers an improved performance and utilizes less CPU.

File Audit

Fixes

Audit data is now fetched instantly as soon as the manual agent is installed.
The dashboard crunch issue has been fixed.
Custom reports are now visible only to the users who created them .

File Analysis

Enhancements

Crunch performance has been improved to utilize optimum memory.
The Disk usage report can now be exported to CSV, PDF, XLSX or HTML formats.

Fixes

File Analysis agent now sends data to the DataSecurity Plus server continuously..
The Disk Usage alert email now specifies server details accurately.
Exported reports now display the correct server names.
On-demand reports can now be generated successfully for the specified mounted drive paths.
In larger environments, duplicate files crunch causing data engine crashes has been resolved.
File Analysis alerts can now be configured using the Server Name rule without any issue.

Jul

Build 6043

Data Risk Assessment

Fixes

When DataSecurity Plus is upgraded, regex (regular expression) duplication for default rules issue has been resolved.
Files can now be scanned without exceeding Java heap memory limits.

File Analysis

Fixes

The agent has been optimized to run security scans more efficiently with lesser memory utilization.
Crunch schedule can now be processed without exceeding memory limits.
Privileged users report can now be exported in PDF and XLS formats without any issues.
On-demand reports for mounted drives can now be generated at all sublevels.

Build 6042

Cloud Protection

Features

Deep packet inspection can be enabled in Mixed MITM mode.
All file upload requests made via Dropbox and Box can now be viewed under File Upload Reports.

Enhancements

Gateway servers can now be installed and upgraded from the DataSecurity Plus web console.
All reports under Cloud Protection can now be exported in CSV, PDF, XLSX or HTML formats.

Fixes

Minor bug fixes.

Jun

Build 6041

File Audit

Fixes

Changes made to the threshold limit of alert emails is updated immediately.

File Analysis

Fixes

The licensing issues across File Auditing module, and File Analysis module has been fixed. Now for every file server licensed in the File Auditing Module, you can use an equivalent amount of storage space (in TB) in the File Analysis module for free.
When DataSecurity Plus is updated to version 6040 and above, the time in Disk Usage report will be displayed correctly.

Data Leak Prevention

Fixes

Email notification can now be sent for all file copy alerts.

Data Risk Assessment

Fixes

The file server scans can now be scheduled without issues in DataSecurity Plus' 6040 Chinese version.

Build 6040

All

Enhancement

Reports can now be scheduled at custom frequencies.

Fixes

Minor security fixes.

File Analysis

Features

List every configured domain and drill down to view the properties of every file and folder with the all-new Tree view.
File properties can be analyzed on a new dashboard that shows storage and security insights specific to the element (all, domain, server, or file) selected in the Tree view.
File Analysis can now locate and report on empty folders.
You can now perform file analysis in mounted drives.
The Security View of the dashboard now shows the security permissions associated with the selected file or folder.
The status of scheduled File Analysis scans can now be seen in the UI.
A new category of reports has been added, showing the files owned by inactive, disabled, and expired users.
You can now locate files with no extensions.
Disk usage trends can be viewed under Storage Reports once again, similar to builds before 6000.

Enhancements

File Analysis scans are now faster than ever with improved scanning speeds.
File Analysis reports have new columns for details on the file extension, file category, length of the file's name, and more.
You can configure drives manually by entering the drive name instead of choosing from a list of discovered drives.

Fixes

Users can now search reports and export the search results, and export Security Reports without facing any errors.
File Analysis scans will be carried out as per their schedules without any errors.
Information in scheduled on-demand reports will be as per the configured constraints.

Data risk assessment

Features

Analyze the risk associated with a file owner and assign them a risk score to enable better management of files containing sensitive data.

Enhancements

Risk Analysis reports can now be filtered based on the data discovery rules and policies that the sensitive file violates.
The schedule status popup now shows the scan's status in graphical form, the configured frequency, and the status of each folder being scanned.

Fixes

Files with apostrophes in their name will no longer be omitted from incremental file scans.

Data leak prevention

Fixes

The Email Auditing Report now shows the email address instead of the contact name in the Email To column.
An issue in the automatic installation of the Outlook email add-in has been fixed.
File classification can now be detected without any issues in 32-bit Outlook applications running in 64-bit environments.
Administrator privileges are no longer mandatory for file classification, and Write permission is sufficient.

Build 6034

All

Fixes

Issue with files missing while upgrading the product has been resolved.

May

Build 6033

All

Fixes

The unauthenticated change to integration system configuration vulnerability (CVE-2020-24786) reported by Florian Hauser has been fixed.

Build 6032

All

Enhancements

Option to set the most preferred module i.e., File Audit, File Analysis, etc., as the default view after login.

Fixes

Automatically update the names of configured servers and endpoints from Active Directory rename actions.

File Audit

Sub-share information can be automatically viewed without any issue using parent share audit data.
Receive uninterrupted events from the agent when the Exclude rule is 'None' for Computer Accounts.

File Analysis

Fixes

Export Full Control report without disruptions.
Export search results from reports without any issue.

Data Leak Prevention

Fixes

Perform mass copy actions of spreadsheet cells without clipboard error.

Apr

Build 6031

All

Enhancements

SSL Certificate can now be applied from Log360 also.

Fixes

Minor issue fixes

Build 6030

Cloud Protection

New feature

Cloud protection (beta version)

Monitor cloud app usage - Keep track of all cloud applications accesses along with details on the actor, application category, its reputation score etc.
Track data transfer to cloud - Monitor upload activities that take place over SharePoint, OneDrive, Office365 applications, and more.
Control the use of shadow applications - Discover shadow applications used in your organization and choose to block or add them to sanctioned applications.
Block high-risk cloud applications - Prevent possible data leaks by blocking the use of unsanctioned cloud applications.

All

Fixes

Minor issue fixes.

Mar

Build 6021

All

Fixes

Minor issue fixes.

File Audit

Enhancements

Improved driver performance to reduce file server load.

Build 6020

All

Enhancements

Support for the Chinese language.
Improved performance with JRE version update from 1.8.0_51 to 1.8.0_192.
Improved storage utilization in the agent by limiting event dump collection to 2GB.

Fixes

Parent and child domain configuration sync issue has been resolved.

File Audit

Enhancements

Custom reports can now be accessed based on the FileType filter.

Fixes

False positive events displayed for the Create Events and Deleted Files reports have been rectified.
Users who have migrated from build 5012 to build 6000 can now set up a global exclude configuration without any issues.

Data Leak Prevention

Features

Endpoint grouping: Group endpoints into a unified devices profile, and set alerts and apply policies to those profiles.
File copy protection: Restrict users from copying critical files by blocking file copy actions.
Warnings for end users: Alert users instantly when they perform unauthorized copy actions.
Process restriction: Block users from running unauthorized executables by creating and applying custom profiles to individual endpoints or groups.

Fixes

The Outlook plug-in now facilitates creating meetings and appointments in Outlook without any issues.

File Analysis

Fixes

The Duplicate Files report now displays all copies of a file including those with long file paths.

Data Risk Assessment

Fixes

Shares with permissions can now be scanned without any disruption.

Build 6013

All

Fixes

RCE (CVE-2020-11531) and authentication bypass vulnerability in DataSecurity Plus DataEngine reported by Sahil Dhar (xen1thlabs) has been resolved.

Feb

Build 6012

Data Risk Assessment

Enhancements

Data scanning speed and performance have been improved.

Jan

Build 6011

All

Fixes

Minor issue fixes.

Build 6010

Data Risk Assessment

Feature

Generate detailed risk assessment reports: Get information on content that violates security and compliance policies, including details such as file properties, permissions, location, and more.

Build 6003

All

Fixes

Technicians can login without any issues after DataSecurity Plus is updated from build 5000 to 6000.

File Analysis

Enhancements

Reports on the effective permissions of groups and well-known security principals.

File Audit

Fixes

Cluster addition and share removal actions can be performed without a hitch.
File names starting with "~" will be automatically excluded from all reports.
Custom report filters now allow special characters.
A crunch issue that caused incorrect graphs to be displayed on the Domain Overview has been fixed.

2019

Nov

Build 6002

File Analysis

Features

On-the-fly duplicate file deletion: Administrators can delete duplicate files right from the Duplicate Files report. Further, each deletion will be recorded in the technician audit log.

Data Leak Prevention

Enhancements

The Files Pasted report now shows the location from where a user last copied a file, if the file was copied via the same machine.
Alerts in the Endpoint module can be viewed based on their profile type.

Fixes

Move/delete responses can now be executed without any issues when sensitive files are copied to clipboard.
Users can now classify files without any disruptions in 32-bit OS environments too.

Oct

Build 6001

All

Fixes

You can now change DataSecurity Plus' default password.

File Audit

Fixes

Events can be excluded based on file size without any issues.

Data Risk Assessment

Fixes

Exported reports will now show only the required data.
An issue in retrieving file permissions and properties has been fixed.

Data Leak Prevention

Fixes

Duplicate events will not be recorded for actions under Email Auditing report.

Build 6000

Data Leak Prevention

Features

Data protection - Monitor, alert on, and block unwarranted data transfer activities to USB devices and email (Outlook).
Incident remediation - Delete or quarantine files, block USB data transfers or choose from other predefined options for active remediations.
USB auditing - Track and analyze the usage of removable storage devices and data transfer to them, across your organization.
Workstation auditing - Audit all file accesses and modifications across your Windows endpoints in real time.
File copy auditing - Report and alert on file copy-and-paste events in real time using predefined policies.
File share auditing - Track all file accesses and modifications to shared files and folders in real time.
Print server monitoring - Audit and analyze print server usage to find who printed what files and when.

Data Risk Assessment

Features

Data classification - Inspect content, and automate the classification of files containing sensitive data.
File tagging - Use manual file tagging capabilities to classify files, based on their sensitivity, as Public, Private, Confidential, or Restricted.
Real-time notifications - Trigger instant alerts when sensitive personal data is discovered.
One-stop operational dashboard - Get a quick overview of any recently-discovered PII (including volume and type), identified trends in storage of personal data, and more.

File Analysis

Features

Spot permission vulnerabilities - Detect permission inconsistencies such as broken or improperly inherited permissions.
Detect security vulnerabilities - Identify and remediate security issues such as unsecured or ransomware-infected files, and purge files owned by stale or deleted users.
Locate duplicate files - Automate the identification of duplicate files.
Track disk space usage - Analyze storage growth and disk usage patterns, and generate instant alerts when free space falls below a preconfigured limit.
Perform ROT data analysis - Identify redundant, obsolete, and trivial (ROT) files to declutter your storage space.

Sep

Build 5012

All

Fixes

Technicians can no longer view or send test mails without authorization.
Other minor fixes.

File Audit

Fixes

Duplicate events will no longer be recorded for file creations and deletions.
An issue that caused the agent to stop collecting data when a monitored drive is reattached has been resolved.
An issue in displaying the client IP and host name in certain conditions has been fixed.

File Analysis

Fixes

An issue that rendered the storage analysis page unresponsive in Internet Explorer has been fixed.

Data Risk Assessment

Fixes

An issue that caused exported risk assessment reports to show incomplete data for certain time zones has been fixed.

May

Build 5011

All

Fixes

Minor issue fixes

Apr

Build 5010

All

Features

Technician audit - Monitor all activities carried out in DataSecurity Plus by all technicians.

Enhancements

GUI enhancements to comply with GDPR requirements.
Option to disable DataSecurity Plus highlights slider in login page.
Option to set a default domain in login page.
Password protection for exported and archived files containing sensitive data.
Ability to stop event collection when free disk space falls below the specified threshold limit.

Fixes

Threshold limits for alerts generated in a day will be maintained as per the configuration.
An issue that rendered users unable to configure an alert with a new name has been resolved.
An issue that rendered users unable to add groups and OUs under the username field while creating alert profiles has been fixed.
Other minor issues.

File Audit

Features

SIEM integration: - Forward all file server audit data to your Syslog server or Splunk.

Data Risk Assessment

Enhancements

View the details of in-progress risk assessment scans, including start time, files completed, number of violations, and more.
Export files scanned report.
Stop the risk assessment scans that are in progress.
Perform incremental file scan: Scan only previously unscanned, new, and modified files.

2018

Dec

Build 5004

File Audit

Fixes

An issue in starting the event collection driver in certain versions of Windows Server 2016 has been fixed.
Events can now be excluded based on client IP and host name without any issues.

Nov

Build 5003

File Audit

Enhancements

Event collection speed and performance have been improved.
The following operations have been automated
- Enabling file server setup after relicensing.
- Update of ransomware file types to default alert profiles.

Fixes

Folder delete events will now be audited without any issues.
An issue which caused the web console to freeze while clicking email notifications has been fixed.
Duplicate values will no longer be recorded for 'read' and 'read deny' events.
Action type can be added to exclude configuration without any issues.
Usernames will be displayed without any issues in Access Audit graphs.
Multiple cluster CAPs can now be audited.

Jul

Build 5002

All

Fixes

Dropdown boxes will now function normally when the product is launched using Internet Explorer.
Users can now add technicians without any issues.
Alert email content and subject can now be changed.
An issue that rendered users unable to attach drives in Turkish language machines has been fixed.
An issue in establishing RPC & HTTP communication in cluster servers has been fixed.
An issue in group and OU rule configuration has been fixed.
Other minor fixes.

File Audit

Fixes

An issue in getting correct cluster information when multiple clusters are configured has been resolved.

Data Risk Assessment

Fixes

An issue that caused the date field to show 'NaN' when Internet Explorer is used has been resolved.

May

Build 5001

All

Fixes

Minor issue fixes.

May

Build 5000

Data Risk Assessment

Features

Risk assessment (Data discovery) - Identify, track, and report instances of personal data stored in files, folders, or shares.

File Audit

Enhancements

Advanced filtering options for detailed file access audit.
Ability to configure inclusion and exclusion rules for file access audit and alert profiles.
Exclude configuration now supports a wide range of criteria.
Revamped graphs across all reports and alerts for enhanced user experience.

Fixes

Minor issue fixes.

Apr

Build 4302

All

Fixes

Agent start-up issue in Windows Server 2003 has been fixed.

Mar

Build 4301

All

Fixes

Minor issue fixes and improvements.

Feb

Build 4300

File Audit

Features

DataSecurity Plus now supports Windows Failover Cluster auditing.

Enhancements

Auto-update of known ransomware file types.
Product notifications to notify and help troubleshoot data collection issues.

Fixes

Reports will no longer show multiple client IPs/host names in a single event.
All special characters in username, password, and all other fields are now recognized.
An issue that caused SIDs to be displayed in the username field for local accounts in some events has been resolved.
Other minor fixes.

File Analysis

Features

Generate new reports on-demand for junction points, network-based open sessions, and open files.

2017

Nov

Build 4211

File Audit

Fixes

File servers can now be added without any errors when the product is launched using Internet Explorer.
Issues with event processing after server restart have been fixed.

All

Fixes

An issue in scheduling reports when the time is in PM has been resolved.
An issue in sending scheduled reports in environments using mail servers for which no authentication is required has been fixed.
Driver start-up issues in Windows Server 2016 have been fixed.

Oct

Build 4210

All

Features

Data collection issues will now trigger email alerts.
File servers running Windows Server 2016 can be audited.

Enhancements

Performance enhancement for generation and exporting of reports.

Fixes

Inputs from the keyboard numpad will now be accepted.
Issues in exporting Japanese and Chinese characters have been fixed
The agent has been improved for better performance.
An issue that caused agent installation and share selection to fail has been resolved.

File Analysis

Features

Generate on-demand reports on shares, effective permissions, privileged users, and orphaned files.
View reports based on file types, categories, and ownership.

Jun

Build 4201

All

Fixes

Users can now configure mail servers for which no authentication is required.
Passwords with special characters can now be configured without any issues.
Minor bug fixes.

May

Build 4200

File Audit

Features

Audit, report, and get alerts on non-domain (workgroup) file servers.

Enhancements

View registry properties of the agent.
Experience accelerated event processing.
Delete custom report views.
Customize alert table columns.
Prioritize alert mails.
Automate responses to alerts that get triggered by executing batch commands.

Fixes

An issue in identifying cross-domain users has been fixed.

Feb

Build 4120

File Analysis

Features

View share and security permissions of configured files/folders in the file server with 'Permission' report.
View properties such as size, file count, and folder count of files and folders in the file server with the 'Properties' report.

File Audit

Enhancements

Audit, report and get alerts on files/folders whose extension has been changed.
Use Regex patterns to define which objects are to be excluded from auditing.

Fixes

Read deny events will now be audited without any issues.
A host of other minor issues have also been fixed to improve performance.

All

Fixes

Users can now configure technicians when using Internet Explorer without facing any issues.

2016

Dec

Build 4111

File Audit

Enhancements

Performance enhancements for faster report loading.

Dec

Build 4110

File Audit

Features

Identify the machine (machine name and IP address) from which the event was triggered.

Enhancements

Users can now exclude computer accounts from being monitored within a domain or server.
Configure drives under local folder in basic file server configuration.
Eliminate deny events for admin users arising due to User Account Control.

Fixes

A host of minor issues have been fixed to improve performance.

Nov

Build 4101

File Audit

Fixes

Events will be reported normally after applying patches.
Specific folders within shares can now be configured without any issue.
Other minor bug fixes.

Nov

Build 4100

ManageEngine DataSecurity Plus has undergone a major revamp. The new build is easier to use and is also packed with additional features that ensure better data security and information management within your Windows file server environment.

File Audit

Features

Access Analysis Reports: Pre-configured reports that provide a summary view of the- most accessed/modified files, most accesses by process/user, and files accessed/modified after N days.
Threshold-based alerts: Lets the admin define a threshold limit beyond which alerts can be triggered, which allows for detection of ransomware and other similar attacks.
Local files and folders can be audited.

Enhancements

Specific folders within any share can be audited (sub-shares).
Custom time periods can be defined.
The Access Audit Report has additional filters and custom views can also be created.
Exclude users, file types, file names, local paths, process names, etc., from being monitored in a specific domain or server.

Fixes

An issue in exporting huge volumes of data has been fixed.

File Analysis

Features

Storage Analysis Reports: Helps isolate old, stale (unused), unmodified, large, hidden and non-business files, and also provides graphical insight into how your disk space is being utilized.

All

Fixes

An issue in Mail Server TLS configuration has been fixed.
Business hours can now be configured without any issues.

May

Build 4016

All

Fixes

The DataSecurity Plus agent now supports .NET Framework 4.6.1.

May

Build 4015

File Audit

Enhancements

Memory usage has been optimized to handle large volumes of data dump from the agents.

Fixes

Domain credentials can be updated without any errors in Internet Explorer.
Encryption types can be changed without any issues when configuring mail servers.
Disk space alerts will now be emailed without any issues.

Mar

Previous Releases

Build 4010

All

Enhancements

DataSecurity Plus Agent now supports .NET Framework 4.0.
Agent performance improved.

Fixes

An issue that caused existing domain controllers to get removed when new DCs are added has been resolved.

File Audit

Enhancements

Filters are now available to export only required data from reports.

Fixes

Users can now search for a specific server or share on the configuration page without any issues.
An issue that caused auditing to stop after a disabled server is re-enabled has been fixed.

Mar

Build 4002

All

Enhancements

JRE migration from version 6 to 8.
PostgreSQL migration from version 9.2.4 to 9.4.4.

2015

Dec

Build 4000

All

Features

Agent-based auditing: Monitor file and folder activities in real time using a lightweight agent.
Pre-configured reports: Keep track of all file and folder related activities like read, write, overwrite, delete, move, rename, and permission changes.
Real time email alerts: Get instant alerts sent straight to your inbox with in-depth event analysis.
Meet compliance requirements: Export data to CSV, PDF, XLS and HTML formats to satisfy compliance requirements of SOX, PCI and FISMA.
Schedule reports: Automate periodic report generation for in-depth analysis.
Archive data: Save disk space with data archiving and restore data when required.
Disk space alerts: Receive email alerts when available disk space in servers running DataSecurity Plus falls below a preconfigured level.