Vectra Cognito 5.8 Release Notes

Cognito Version 5.8 includes the following features and enhancements as well as a few bug fixes:

  • Host Lockdown for Microsoft Defender ATP hosts
  • New PAA Unusual Insider detection
  • External Remote Access detection improvements
  • Enhancements for HostID coverage of VPN IP pool
  • MITRE ATT&CK framework mapping in detection one-pagers
  • Support for backup using username / password for sftp
  • PAA detections via Windows Event Logs forwarded over TCP/XML
  • Syslog/Kafka output filtering for hosts, account and detection events
  • Security enhancements

Click below to download the release notes for Cognito Version 5.8.

Was this article helpful?
0 out of 0 found this helpful

Download PDF


Article is closed for comments.