Lastline Enterprise On-Premises Release Notes

Version 3.0

New features

  • Console view
  • Updated sensor overview page
  • Previct Portal User Guide

Console view feature details

Lastline's Console view provides an e-mail inbox-like feature that allows users to:

  • Efficiently keep track of all incidents that are occurring.

  • Quickly see a list of affected hosts.

  • Prioritize threats according to their impact and severity levels using different views.

  • Gain an in-depth understanding of the events that have been registered for each incident, and access threat and mitigation descriptions.

  • Archive or unarchive incidents.

  • Mark / unmark affected hosts as being cleaned.

  • Ignore reported threats for specific hosts.

The console provides four different views that allows the user quick access to incidents with different impact and severity levels. Each view lists incidents that belong to a specific category (i.e., Infections, Watchlist, Nuisances, Archive). Lastline prioritizes incidents according to the risk they pose to an organization.

Just like in a classic e-mail interface, incidents that the user has not checked yet are marked as unread (i.e., bold font), while those that she has already checked are marked as read (i.e., normal font). The user has the option of selecting incidents and to perform actions on them such as marking them as read or unread. Furthermore, the user can also archive or unarchive selected incidents.

Sensor overview details

The sensor overview page (visible after logging in) now provides clearer information about sensors and licenses status. In particular:

  • It provides an indication of each sensor status, reporting typical errors (sensor disconnected, outdated sensor version, etc.)

  • It maps each sensor location using a geoip database. The location of the sensor can also be manually set.

Previct Portal User Guide details

A new section of the website with Previct Portal User Guide is accessible via the "Help" link in the top-level navigation bar.

The Previct Portal User Guide: describes the functionality of most sections of the website, discusses how Previct can be used in a proof-of-concept deployment.

2.17 3.1