Release Highlights - Cortex CLOUD

The Cortex Cloud Runtime Security 1.2 release includes the following highlights:

FEATURE	DESCRIPTION
Cloud Security and Posture Management	Internet Exposure Detection support has been added to Cortex Cloud for workloads running in AWS Lambda, AWS RDS, AWS Redshift, Azure SQL, Azure Cosmo DB and Managed Kubernetes Clusters (EKS, AKS and GKE) using Internet scan data. Introducing support for the identification of exposed services in Kubernetes through ingress paths.
Remediation & Automation	New built-in automation capabilities featuring executable commands, scripts, quick actions, and playbooks allow customers to accelerate the resolution of their security issues. Customers can use these capabilities directly from Cortex Cloud to mitigate common issues (e.g. publicly exposed S3 buckets) using issue investigation war rooms, or select them to auto-trigger a response to an issue using automation rules.
Compliance	30 new regulations are supported including NIST 800-53, NIST CSF, ISO 27001 and 27002, FedRAMP, and many more. This allows you to effortlessly verify that your workloads, data, AI models, and identities adhere to well-known regulations. Users can now create custom compliance detection rules using Python-based scripts, providing increased flexibility in defining and enforcing security best practices. This enables users to customize compliance requirements to suit their specific needs, ensuring alignment with organizational goals and regulatory standards.
Cloud Workload Protection	Secure Serverless functions in FaaS infrastructure, from development to runtime. Gain seamless visibility into vulnerabilities and posture with agentless scanning. Monitor and protect functions in real-time with agent based security. The XDR agent now adds advanced detections of malicious Linux executables using a local analysis model that leverages big data, ML, and threat analysis across both public and private cloud environments.
Web Application & API Security	Automatically analyze and detect API attacks and misconfigurations to surface security risks. Comprehensive API specification inventory, including a detailed view of API definitions. API testing helps improve both development and security efficiency. Users can seamlessly integrate testing into their workflows to quickly identify and resolve potential security issues through the Cortex CLI.
AI-SPM	AI-SPM now detects AI API keys embedded in risky serverless functions, enabling organizations to identify and mitigate excessive AI agency and potential security risks.
Data Security & Posture Management	Expanded support for Snowflake asset types, along with new detection rules to further secure data across cloud databases as a service (DBaaS), ensuring stronger protection and compliance.
Dashboards & Reporting	New dashboards are now available for the Data, Identity and AI Security Posture modules, providing key insights into top security issues related to sensitive data, human and non-human identities, and AI pipelines for better security posture management.
Enhanced ML Model for Detecting Malicious Linux Executables	Advanced high-accuracy detection of malicious Linux executables using a local analysis model that leverages big data, ML, and threat analysis across both on-premise and cloud environments.