March 2024 Platform Releases

Generally Available

• Query improvement to lacework-global-496 - A query improvement has been made to lacework-global-496, which will fix an issue where some region specific GCR repositories were being flagged as non-compliant.

• Compliance policy title and content updates - See Latest Changes (27th March 2024) in the Compliance Policy Catalog for details.

• Violation policy title and content updates - Content improvements have been made to 15 violation policies.

  Of these, title improvements have been made to 5 AWS CloudTrail policies and 2 Kubernetes Audit Log policies.

  Click to display the violation policies with old and new titles

  Policy ID	Old Title	New Title
  lacework-global-1	VPC Change	Virtual Private Cloud (VPC) Change
  lacework-global-12	IAM Policy Change	Identity and Access Management (IAM) Policy Change
  lacework-global-18	Customer Master Key Scheduled for Deletion	Key Management Service (KMS) Key Scheduled for Deletion
  lacework-global-21	Successful Non-SAML Console Login Without MFA	Successful Non Security Assertion Markup Language (SAML) Console Login Without Multi-Factor Authentication (MFA)
  lacework-global-30	S3 Bucket ACL Change	S3 Bucket Access Control List (ACL) Change
  lacework-global-173	Workload created with shared host PID	Workload created with shared host Process ID (PID)
  lacework-global-174	Workload created with shared host IPC	Workload created with shared host Inter-Process Communication (IPC)

Public Preview

• A redesigned Dashboard is now available in the Lacework Console - The new Dashboard enables you to track the progress of your environment's security posture across three facets: risk metrics, resource groups, and time. See Dashboard for full details.

Documentation Updates

• Local scanning quickstart guide added for the Lacework CLI inline scanner component - The inline scanner can be used through the Lacework CLI by installing the vuln-scanner component. See Local Scanning Quickstart - Get Started with the Lacework CLI.
• Compliance policy changelog history and latest/upcoming changes are now available to view
  • Latest and upcoming changes to compliance policies are now displayed in the Lacework Compliance Policy Catalog page.
  • Compliance policy changelog history will now be available to view at https://docs.lacework.net/compliance/changelog.
    • This will only include changes from 20th March 2024.