This release contains the following component versions:
|
You can read the release blog post here.
New Features
New Access Point Parameters for Geolocation Tracking
Category: Web / Monitoring
We’ve expanded Access Point (AP) detection in location tracking to support two new options: CIDR NETWORK RANGE and PUBLIC IP ADDRESS. Previously, APs only supported Wi-Fi parameters (SSID and MAC address). This update makes it easier to support wired and VPN-based office networks.
You can find these options when adding or editing access points from the Configure > Locations screen:
CIDR NETWORK RANGE: Allows you to designate an entire private network range as an access point. (Example:
10.0.0.0/16).PUBLIC IP ADDRESS: Allows you to identify a location based on a specific public IP address, ideal for networks using fixed public IPs. (Example:
203.0.113.10) .
Additional Changes:
All network source fields (SSID, MAC ADDRESS, CIDR NETWORK RANGE, PUBLIC IP ADDRESS) under the access point setting are now optional, so you can mix and match what best fits your infrastructure.
Support for Separate Tracking Configuration
Category: Web / Windows Agent / Mac Agent
We’ve introduced several independent configuration options and rearranged a few of them in Screen, Applications, Websites, Keystrokes and Advanced monitoring settings to offer you greater flexibility. You are no longer forced into an "all-or-nothing" approach; for example, you can now suspend screen recording for sensitive apps/websites without losing the ability to track app/web activities or keystroke data.
Check out the User Guide > Monitoring Settings section for more information.
[Mac] Monitoring Support for Outlook (Web)
Category: Mac Agent / Monitoring
We are excited to announce Outlook (web) email monitoring capabilities for Mac. This update brings the Mac Agent in line with our Windows Agent, ensuring a consistent and robust monitoring experience across platforms.
Feature Highlights:
Comprehensive Tracking: Both outgoing and incoming are captured with essential details such as sender, email subject, recipients (including CC and BCC participants), email body, and attachments. You can view the report under BI Reports > Emails.
Monitoring Setting and Privacy Controls: All Emails monitoring settings are supported (with the exception of the "IGNORE EVENTS EVEN IF BEHAVIOR POLICIES MATCH" option).
Async Processing: Emails are processed and uploaded asynchronously for optimal performance.
Limitations:
Email Parsing: Incoming emails are parsed and recorded only once the user opens the email.
Attachment Size: The system guarantees the capture of attachments up to 15 MB. Files up to 30 MB may be captured depending on hardware resources and system load.
Notes:
You will need to enable the Network Monitoring Permission and turn on Emails and Network monitoring from the monitoring profile for this feature to work.
[Mac] Emails Activity Rules Support for Gmail and Outlook
Category: Mac Agent / Behavior Rules
We are excited to announce support for Emails Activity Rules for Gmail (web) and Outlook (web). This enhancement enables organizations to enforce compliance and security policies for Gmail usage on Mac endpoints, reducing risk and improving oversight.
Supported Features:
Rule Criteria: Mail Body, Mail Subject, Mail CC, Mail To, Mail From, Mail Direction, Mail Client, Has Attachments, Mail Size.
Conditions: All basic conditions such as Contains, Equals, Match regexp.
Actions: Warn, Block and Lock Out User.
Notes:
You will need to enable the Network Monitoring Permission for this feature to work.
Check out the Rules Guide to learn how to use the rule.
[Mac] Enhanced Websites and Screen Monitoring Controls
Category: Mac Agent / Monitoring
The Mac Agent now offers more granular control over which websites are monitored and recorded, enhancing user privacy and compliance. You can now select specific websites to include/exclude from monitoring. Websites you choose not to monitor will be blacked out in screen recordings to ensure privacy.
The following options are now supported in Websites and Screen monitoring settings:
WEBSITES: |
|
SCREEN: |
|
Limitations:
Supported Browsers: Brave, Chrome, Edge, Firefox, Opera, and Safari.
For more information, check out the Monitoring Settings > Websites and Monitoring Settings > Screen sections of the User Guide.
Improvements
Expanded Support for Multiple Content Definitions in Behavior Rules
Category: Server / Behavior Rules
We’ve removed the restriction that capped Clipboard, Keystrokes, and IM-based Content Sharing rules at two Content definitions per rule. Previously, exceeding this limit prevented rules from triggering correctly. With this update, you can now configure complex data loss prevention rules using three or more content definitions, ensuring consistent and complete enforcement.
Support for FAT/exFAT External Drives in Rules
Category: Windows Agent / Behavior Rules
The rule engine now supports scanning for FAT and exFAT formatted external drives. Files rules, such as the example shown below, will now accurately detect I/O operations on these volumes to ensure consistent rule enforcement. This enhancement eliminates a potential security gap, providing comprehensive data loss prevention coverage for removable media.
Improved Alert Description for Keystrokes Rule
Category: Windows Agent / Behavior Rules
Keystrokes rule alerts triggered by a Shared List now highlight the specific matching keyword within the alert description instead of displaying the list ID. This removes ambiguity and allows for immediate identification of the trigger.
Support for MS Teams Multi-Account Logins
Category: Windows Agent / Monitoring
Following recent updates to MS Teams desktop client that allow users to be logged into multiple accounts simultaneously, we have updated the Agent to ensure full compatibility. You can now accurately track meetings and chats even when users are juggling multiple accounts at the same time. This enhancement ensures that activities are captured in Online Meetings and Instant Messages reports regardless of which account is active, effectively eliminating data gaps and providing a complete picture of user communications.
Improved Privacy for Keystrokes Monitoring in Zoom
Category: Windows Agent / Monitoring Settings / BI Reports
We have adapted to changes in Zoom this summer which led to keystrokes entered in Zoom's password field being recorded even when the MONITOR KEYSTROKES FOR PASSWORD FIELDS IN DESKTOP APPS option was disabled in the Applications monitoring settings. With this resolution, passwords typed in Zoom are no longer tracked if password monitoring is off, ensuring user credentials remain private.
Enhanced Hierarchical Display for Active Directory Departments
Category: Server / Integrations
We have improved the Active Directory sync to provide greater context for department structures. When multiple departments share the same name, the system now automatically displays their full organizational hierarchy to distinguish them (e.g., “Helpdesk Department ← Shanghai ← APAC”). This enhancement ensures every department is uniquely identifiable, enabling administrators to assign users and configure monitoring without any confusion.
Improved File Names Detection in LLM BI Report
Category: Windows Agent / BI Reports
We’ve addressed an issue where uploaded files were being renamed to random strings (Example: "file-W9e21HwqjSNFeAhhxA38XZ") in the LLM report’s Attachments column. Files now retain their original names, making them easier to identify and access.
Improved Email Address Handling in BI Reports
Category: Windows Agent / BI Reports
We’ve resolved an issue where some email addresses in BI reports could contain unwanted characters, such as extra hash symbols or spaces (Example: "###[email protected]" or " user@ example.com"). The Windows client now includes a configurable feature to automatically clean up these invalid symbols, ensuring email addresses are properly formatted in reports.
Clear Message for Unretained Videos
Category: Web / Session Player
We’ve enhanced the Session Player to provide better context regarding data availability. If a video recording is no longer available because it has exceeded your organization’s configured retention period, a clear, user-friendly message will now appear. This ensures users can easily distinguish between a deleted record and a playback error.
Other Improvements
Web
Timestamp Resets on Session Player: Addressed an issue in the Session Player where timestamps were unintentionally reset when clicking or panning on the video area.
Prevent Search Fields Autofill: Fixed an issue where Chrome could autofill saved usernames into the dashboard’s search and filter fields; search inputs now prevent credential injection while keeping search functionality intact.
Improved Enterprise Dashboard Data Refresh: Fixed an issue where the “Computer” and “Current task” columns in the Online Employees widget showed incorrect/placeholder data. The widget now subscribes correctly to session updates so real computer and task information is displayed reliably.
Improved RBAC Permission: Fixed an issue where some RBAC users with the Configure Agents permission could not open employee profiles from the Employees screen. Profiles now open correctly when the user has the appropriate access.
Improved Audit Report: Fixed an issue where the “Action Details” column in Audit BI report would have missing information for archived video “View” events. The report now displays the correct data and time range for which the video was viewed.
Improved Audit Report Export: Fixed an issue where empty Action Details values in CSV/PDF exports were shown as “[Object object]”. Empty fields now appear correctly as blank in the exported Audit BI report.
Improved System Log Report: We’ve cleaned up the System Log report by removing the unused “View Screen (live)” and “View Screen (record)” actions from the filter options. All relevant screen viewing activity remains available under the existing audit actions, while the report is now clearer and easier to use.
Improved User Invitation: The “Send Invitation” button will no longer appear on an employee’s profile after the user had already logged into the web dashboard via the “Forgot password” flow.
Improved Video Export: Resolved an issue where exporting videos from the web dashboard could fail with a “504 Gateway Timeout” error or run indefinitely. Video export requests now complete reliably and return clear feedback if the export cannot be processed.
UI Stability Improvement for Monitoring Profiles: We’ve resolved an issue where entering long, continuous text strings in the Monitoring Settings sceen (such as a long URL in the Websites setting) caused the page layout to break. The interface now handles long text correctly and remains stable.
Security Hardening: Improved validation and sanitization of certain web content to prevent potential vulnerabilities while preserving normal formatting.
BI
Improved BI Classification Performance for Large Resets: We optimized the BI classification engine to reduce processing time during large “classification reset” operations.
More Accurate Session Duration: Fixed an issue where login session duration in reports could be overstated when using the Date filter, so durations now match the selected date range.
Improved Login Sessions Report for Mac: Resolved an issue where some Mac login sessions could display negative duration values when using specific date ranges and time zones. Session durations are now calculated and shown correctly in all supported time zones.
Security Hardening: Improved platform security by updating internal networking components.