Die Neue LUCY Version 4.4 hilft mit einem stark verbesserten O365 Phishing Incident Button

Brandneu: LUCY V4.4 und wieso Sie auf die neue Version upgraden sollten!

Der zweite Release unter Debian Linux 9.5 bringt vorallem den Benutzern des Phishing Incident Buttons erhebliche Verbesserungen. Weiter ist nun die DSGVO Konformität auf höchstem Niveau!

Der Office 365 (c) Incident Button ist nun ausgereift und die Mail- und Webfilter-Test Funktionalität wurde verbessert. Weitere Verbesserungen und Fehlerbehebungen siehe unten.

Was ist der Mail- und Webfilter Test?

Dieser E-Mail- und Internet-Malwareschutztest gibt Ihnen einen Einblick, wie Ihr Mailserver und Web-Proxy mit verschiedenen Variationen von Dateien und Dateitypen umgeht. So können Sie sehen, ob potenzieller bösartiger Code wie Java-Dateien, Backdoors, Skripte, eingebettete Office-Objekte von der Filterinfrastruktur erkannt und blockiert werden. Auf Basis dieser Ergebnisse können Sie dann eine gezielte Phishing-Kampagne durchführen. Und Sie wissen, welche Dateien von Ihren Browsern und von der Email-Infrastruktur durchgelassen werden.

 

Warum ist die neue Debian Linux Version so wichtig?

Die Linux-Version, die wir bis Lucy V4.2 verwendet haben, erhielt keine Sicherheitsupgrades mehr vom Hersteller, so dass Sie mit dem Umstieg auf die neue Version bis 2022 weiterhin Sicherheitsupdates für alle Software für die Betriebssystemebene erhalten werden. Darüber hinaus wird Lucy auf neueren Versionen von Software laufen, was einige Dinge beschleunigen kann.

 

Neue Hauptfunktionen der Version 4.4 (engl.)

Welche anderen Verbesserungen und neuen Funktionen sind besonders erwähnenswert? Zum Teil mit Links auf das englischsprachige LUCY-Wiki.

 

 

VmWare / VirtualBox / AWS / Native Linux verfügbar

 

Andere Verbesserungen und Fehlerbehebungen

Verbesserungen und andere neuen Funktionen (engl.)

  • Verbesserung – Improve template menu (awareness + scenario templates)
  • Verbesserung – SE: Catch email replies
  • Verbesserung – SE: Embedded email client
  • Verbesserung – Recipient Statistic Improvements
  • Verbesserung – O365: implement features from MSI plugin (Plugin)
  • Neu  – Campaigns and CampaignScenario tables refactoring
  • Neu  – SE: Time tracking for landing page

Fehlerbehebungen (Bugfixes)

  1. Server – Awareness Delay bug
  2. Server – End User Portal: incorrect redirection
  3. Server – Downloaded Files: incorrect calculation
  4. Server – Test Run: Awareness email isn’t sent if delay>0
  5. Server – Pinned Campaign checkbox: UI changes
  6. Server – Resend Button (Errors): MessageJob does not start
  7. Server – Risk Assessment: highlight recommended scenarios
  8. Server – Invert-Train: trained_at isn’t updated
  9. Server – Campaign name should be unique
  10. Server – Campaign Restore: User Id cannot be blank
  11. Server – Statistic charts are displayed as “in progress” in stopped campaigns
  12. Server – Quiz stops counting answers when get 10th question
  13. Server – Campaigns: backup is displayed when apply search
  14. Server – Campaign Recipients: Distribute users over selected scenarios
  15. Server – Mail & web filter test – 500
  16. Server – Users: Admin account is changed to end user
  17. Server – Update bug 4.3 => 4.4
  18. Server – No default reputation level is displayed after successful submission
  19. Server – Users: Certificate-based login
  20. Server – PHP error
  21. Server – 500 error during import recipients
  22. Server – Invalid awareness_id when restoring awareness only company
  23. Server – 2FA: second password is sent
  24. Server – Missed column names for recipient
  25. Server – Remove `Reports`,`Campaigns` from New Client
  26. Server – X-headers are not set in forwarded emails in O365
  27. Server – Scenario Templates: download instead of release date
  28. Server – Awareness website click stats is not anonimized
  29. Server – Landing Page Editor: Close Handler nor working
  30. Server – Advanced data not anonimized
  31. Server – Incorrect training score
  32. Server – Benchmark Sector settings: top-border overlapping
  33. Server – Text after quotes will disappear after apply search
  34. Server – Quiz Scores Distribution
  35. Server – Recepients: User see `null` text in alert during deletion recipients
  36. Server – Correct text placement in ‘Awareness website’ graph
  37. Server – Incidents: the Email domain is parsed incorrectly
  38. Server – Reports: remove extra tags
  39. Server – End Users: correct succeeded users count
  40. Server – Recipients import: custom fields aren’t imported
  41. Server – Users info is not anonymized
  42. Server – Hide anonimized user data on server side
  43. Server – Campaign Wizard: error creating campaign wizard with ‘Mail & Web Filter Test’, ‘Technical Malware Test’ types
  44. Server – New scenario cannot be added
  45. Server – Portable Media Attack: Failed AJAX requests
  46. Server – LHFC: Tool is not attached
  47. Server – Data in report template is not anonymized
  48. Server – Collected data is not Anonymized
  49. Server – Hide statistic info for company with anonymous scenario
  50. Server – CampaignGroupRecipientEditJob: recipient_count isn’t updated
  51. Server – PHP notice
  52. Server – awareness website – fake anonymity statistic
  53. Server – Adapt template: Website is disabled after saving basic settings
  54. Server – Can not close BenchmarkSettingsForm
  55. Server – 404 on “opened” item
  56. Server – Attaching renamed image
  57. Server – Unable to restore from backup
  58. Server – Campaign recipient link bug
  59. Server – End users not created for the phishing campaign
  60. Server – Data in export drop down is duplicated
  61. Server – PHP notice on time/top worst
  62. Server – Reputations Level bug
  63. Server – Campaigns: Unable to delete all campaigns
  64. Server – Error creating recipient without email
  65. Server – Error saving in “Base Settings” section
  66. Server – Campaign Wizard: 500 error on create campaign ‘Training’ type
  67. Server – LDAP: users from another domain are not imported
  68. Server – Campaigns: Runtime exception of save campaign name with <>
  69. Server – Awareness: 404 on preview website for specific template
  70. Server – Campaign Wizard: the 404 page on preview template
  71. Server – SMS issue
  72. Server – “Test Run” bug in portable campaign
  73. Server – Reputation Levels buttons bug
  74. Server – Recipients import: “records of page” dropdown bug
  75. Server – Recipients import dropdown bug
  76. Server – Dynamic Domain Save Bug
  77. Server – Search field is not cleared after clearing field and click Update button
  78. Server – Migration Tool: “Campaign templates” section is not copied
  79. Server – Campaign export : table appearance issue
  80. Server – Negative rating
  81. Server – API: scenarios bug
  82. Server – Time landing Page varaibale is not shown in help
  83. Server – Individual scenarios not running
  84. Server – Bad code performance in CampaignController.actionClearSimilarErrors
  85. Server – Error uploading logs to server (error 400)
  86. Server – View Only User Bug
  87. Server – Scheduler: Run Days data validation
  88. Server – End User Line Break Issue
  89. Server – Awareness Certificate: non-english scenarios
  90. Server – Broken link in the campaign breadcrumbs
  91. Server – Recipient group creation bug
  92. Server – Mail settings bug
  93. Server – Enduser login bug
  94. Server – Add language to template
  95. Server – Report Variable: limited interval
  96. Server – Report Variable: screenshot by scenario ID
  97. Server – Reminders page: numeric UpDown fields display only one digit in Firefox
  98. Server – Forward Email bug
  99. Server – Test Run: Resend bug
  100. Server – Recipient Import from CSV: Gender column is missing
  101. Server – End User portal: password.txt
  102. Server – Copy button display bug
  103. Server – CSS bug: too long campaign name
  104. Server – Enduser when creating users
  105. Server – Permission issues
  106. Server – Advanced settings form adjustment
  107. Server – View filters bug
  108. Server – Adding recipients from search results
  109. Server – Campaigns.recipient_count bug
  110. Server – Test run affects campaign running time
  111. Server – Campaign summary design issue
  112. Server – System creates endusers for portable attacks
  113. Server – Awareness page is still accessible after campaign is stopped
  114. Server – Wrong user info in campaign stats
  115. Server – Import from CSV: Link field verification
  116. Server – Collision of victim’s links in copied campaign
  117. Server – Performance test campaign is not deleted after stop
  118. Server – Campaign overview not showing success
  119. Server – Reports: file type settings are not displayed
  120. Server – Webpage upload bug
  121. Server – Object restore id bug
  122. Server – Wrong paginator url on recipient page
  123. Server – clear-db.sh bug
  124. Server – LDAP: users who have name with brackets are not imported
  125. Outlook MSI Plugin – Outlook phish button error message when reporting mail which is in “draft”
  126. Outlook MSI Plugin – Big attachment bug
  127. Outlook 365 Plugin – Error parsing headers in O365 reports
  128. Outlook 365 Plugin – Useless function-file referenced from XML (with a wrong URL)
  129. Outlook 365 Plugin – Error for awareness reports
  130. Outlook 365 Plugin – Outlook 365 restored item bug

 

VmWare / VirtualBox / AWS / native Linux verfügbar
500 Gratis Empfängerkredite sind mit dabei!