Cortex XDR applies machine learning at cloud scale to rich network, endpoint, and cloud data, so you can quickly find and stop targeted attacks, insider abuse, and compromised endpoints. Cortex XDR apps consume and correlate data from the Cortex Data Lake to reveal threat causalities and timelines—they're your mission control for complete visibility into network traffic and user behavior.
|21 January 2020||For Traps agents running on unpatched Windows 10 endpoints, the Traps agent 6.1.4-h1 release includes a hotfix to address vulnerability CVE-2020-0601. Get all the details in our Release Notes.|
|19 December 2019||The Cortex XDR agent build 188.8.131.52797 is now replaced with a hotfix build 184.108.40.206644. Installation packages that were generated using the earlier build can no longer be used to install or register new Cortex XDR agents. Cortex XDR agents that were already installed using the earlier build will continue to connect to Cortex XDR and receive policy however, we recommend that you upgrade to the latest build containing the hotfix.|
|4 December 2019||Cortex XDR is jam-packed with new integrations including the all new Cortex XDR agent for advanced endpoint protection, external log ingestion from Fortinet and Cisco ASA firewall logs, and loads more!|
|30 October 2019||You can now ingest logs and alerts from external syslog sources such as Check Point firewalls.|
|24 September 2019||Configure a new incident starring policy to enable Cortex XDR to categorize incidents that contain characteristics that are important to you.|
|6 August 2019||Two apps become one! Cortex XDR now includes all investigation, response, and analytics capabilities.|
|30 June 2019||Cortex XDR welcomes Demisto with new APIs to help you leverage Demisto for automated incident response and security orchestration.|