Release Notes 2021-2024
Nightfall Release Notes for the features released in 2024, 2023, 2022, and 2021.
Nightfall Product Updates 2024
December 2024
This section enlists the feature enhancements released by Nightfall in December 2024.
Access Un-redacted Findings in CSV Reports: Nightfall administrators can now view un-redacted findings in CSV reports. Findings not older than 30 days, can be viewed in un-redacted form. Click here to learn more about this feature.
UI enhancements in Alert platforms: The alert platform page UI has been modified to present a better user experience.
November 2024
This section enlists the feature enhancements released by Nightfall in November 2024.
User and User Group Filtering in Google Drive: Nightfall now allows you to filter users and user groups in Google Drive policies. You can now choose to monitor or exclude the monitoring of specific users and user groups. Click here to learn more about this feature.
Support for Labels in Google Drive Policies: You can now use Google Drive Labels in Google Drive policies. You can use Labels during the configuration of Scope, Automated actions, and End-user remediation stages of a Google Drive policy. Click here to learn more about this feature.
Detectors for South Korea and Spain: Nightfall has released new detectors which support PII data protection for South Korea and Spain. Click here to learn more about the detectors.
Internal Data Governance in Posture Management: You can now monitor the addition of unsanctioned internal users and groups in Google Drive policies in posture management. With this feature, the Gives Access trigger is filters are now updated and allow you to include or exclude specific users and groups. Click here to learn more about this feature.
Monitor Sharing and Exfiltration of Labeled Assets: Nightfall now enables you to only monitor or exclude the monitoring of assets based on Google drive labels. This feature is applicable to Google Drive policies in exfiltration and posture management. Click here to learn more about this feature.
October 2024
This section enlists the feature enhancements released by Nightfall in October 2024.
Upload Domain List to Domain Collection: Nightfall now allows you to upload a list of domains while creating a domain collection in the MAC endpoint integration. Click here to learn more about this feature.
Add Domain from Event Detail View: Nightfall now allows you to add a newly discovered domain which is listed on the Event detail view, to one of the existing domain lists. Click here to learn more about this feature.
New "Download Original Content" button in OneDrive: Nightfall has introduced a new action button Download Original Content in OneDrive. You can find this button on the OneDrive Event detail view page. This button downloads the content from OneDrive that contains sensitive data. Click here to learn more about this feature.
MAC OS Agent Auto Update: Nightfall can now automatically update the macOS agent without any actions needed from customers. This feature ensures that customers get agent bug fixes and feature updates directly to endpoints. Click here to learn more about this feature.
Domain Filtering in Data Security Posture Management Policies: Nightfall now allows you to filter and select specific domains and free email domains (ymail, gmail, and so on) for monitoring. Click here to learn more about this feature.
Support for Okta as an Identity provider: Nightfall now allows you to perform Directory Sync by using Okta as an Identity provider. Click here to learn more about this feature.
Slack User and User Group Filtering: Nightall now allows you to configure Slack policies by filtering specific users and user groups. Click here to learn more about this feature.
Support for Labels in Google Drive Policies (early preview): You can now use Google Drive Labels in Google Drive policies. You can use Labels during the configuration of Scope, Automated actions, and End-user remediation stages of a Google Drive policy. Click here to learn more about this feature.
Introduction of Playground 2.0: Nightfall has now enhanced the Playground capabilities. You can now use advanced features like 7 detection use cases across 20 top detectors providing real-time feedback as users type, use cases with preloaded sample data, and ability to instantly use detection capabilities with just a click. Click here to test the enhanced version of Nightfall playground.
Ability to Download Sensitive Data Events: Nightfall now allows you to export sensitive data events. You can click the Export as CSV button to download the data. The data is exported as a CSV file to the email ID of the logged in user. Click here to learn more about this feature.
Introduction of Events and Policies in Data Encryption: Nightfall has now introduced Events and policies in Data Encryption. You can now create policies in Data encryption and view Event data for these policies. Click here to learn more about this feature.
Ability to Remediate by Content Type in Slack: Nightfall now allows you to remediate Slack data based on content type. This feature allows you to enable delete file, and redact messages as two independent actions in a single Slack policy. Click here to learn more about this feature.
September 2024
This section enlists the feature enhancements released by Nightfall in September 2024.
Introduction of Events and Policies in Data Encryption (early preview): Nightfall has now introduced Events and policies in Data Encryption. You can now create policies in Data encryption and view Event data for these policies. Click here to learn more about this feature.
Sender, Recipient, and Domain Filtering in Email DLP: Nightfall now allows you to configure Email DLP policies to include or exclude specific senders, recipients, and domains for monitoring. Click here to learn more about this feature.
Support for Okta as an Identity provider (early preview): Nightfall now allows you to perform Directory Sync by using Okta as an Identity provider. Click here to learn more about this feature.
Slack User and User Group Filtering (early preview): Nightall now allows you to configure Slack policies by filtering specific users and user groups. Click here to learn more about this feature.
Detector for Philippines Tax ID Number (early preview): Nightfall has now introduced a detector that can detect the TIN (tax ID number) in Philippines. Click here to learn more about this feature.
Improvements to the PHI Detector: Nightfall has now enhanced the PHI detector. This enhancement ensures improved data output handlings, greater accuracy in file classification, greater model precisions, and validation of findings. Click here to learn more about this feature.
August 2024
This section enlists the feature enhancements released by Nightfall in August 2024.
Detectors for Southeast Asian Countries: Nightfall has released new detectors which support sensitive data protection for southeast asian countries namely Cambodia, Indonesia, Philippines, Singapore, and Vietnam. Click here to learn more about the detectors.
Risk Scoring: Nightfall now allows you to rank violations in accordance to the risk associated with them. Click here to learn more about this feature.
New Vendor Specific API Key Detectors: Nightfall has launched vendor specific API key detectors for four vendors namely OPenAI, Pagerduty, Databricks, and, Hugging Face. Click here to learn more about the detectors.
Introduction of Exfiltration Prevention for Salesforce (early access): Nightfall now supports exfiltration prevention for Salesforce. Click here to learn more about this feature.
Enhanced Image ID Detectors: Nightfall has significantly enhanced the capabilities of image ID detectors. These enhancements reduce false positives and improve detector coverage. Click here to learn more about the detectors.
Unified Events Page: Nightfall has now unified all the events across all the products on a single page. Going forward, Violations would now be known as Events. Click here to learn more about the feature.
Ability to Exclude Applications from Google Drive Exfiltration: Nightfall now allows you to exclude applications from being monitored in Google Drive exfiltration policies. Click here to learn more about the feature.
Introduction of Lineage-Based Policies in macOS (early preview): Nightfall has now introduced endpoint lineage and lineage based policies for macOS. Click here to learn more about the feature.
July 2024
This section enlists the feature enhancements released by Nightfall in July 2024.
Introduction of Data Exfiltration and Posture Management for Google Drive: The Google Drive integration is now equipped with exfiltration prevention and posture management capabilities. For more information, refer to this document for exfiltration prevention and this document for posture management.
IDP Integration with Corporate Directory Services: Nightfall now supports directory service in Microsoft Entra and Google Directory. Click here to learn more about this feature.
Introduction to Nightfall Data Encryption: Nightfall has now introduced data encryption for the Gmail integration. Click here to learn more about this feature.
Sensitive Data Protection to Emails: Nightfall can now scan your emails for sensitive data. This feature is currently available in Gmail. Click here to learn more about this feature.
Introduction of AI-powered Automated Labelling in Google Drive (early preview): Nightfall now allows you to use Labels in Google Drive policies. Click here to learn more about this feature.
Introduction of Role Based Access Control (RBAC): Nightfall now supports RBAC for better resource management. Click here to learn more about this feature.
Improved Navigation Bar: The Nightfall application's navigation bar is now enhanced for better user experience. You can view the latest navigation bar by logging in to Nightfall.
June 2024
This section enlists the feature enhancements released by Nightfall in June 2024.
Sensitive Data Protection now available for OneDrive: Nightfall now supports sensitive data protection in Microsoft OneDrive for Business. Click here to learn more about this feature.
Sensitive Data Protection now available for Teams Chat: Nightfall now supports protection of sensitive data in Microsoft Teams for chat messages. Click here to learn more about this feature.
Bulk Remediation for Google Drive Violations: Nightfall now supports bulk remediation for violations reported in Google Drive. Click here to learn more about this feature.
Ability to Detect UK and Canadian Street Addresses: Nightfall has enhanced the
Street_Address
detector to detect UK and Canadian street addresses. Click here to learn more about this detector.Ability to Detect UK Phone Numbers: Nightfall has enhanced the
Phone_number
detector to detect UK and Canadian street addresses. Click here to learn more about this detector.Exfiltration Protection for macOS Devices (early access): Nightfall now supports exfiltration prevention in macOS devices. Click here to learn more about this feature.
May 2024
This section enlists the feature enhancements released by Nightfall in May 2024.
Launch of Firewall for AI: The rebranded and retargeted version of Nightfall Developer platform is now available as Firewall for AI, which focuses on Generative AI model building. Click here to learn more about this feature.
Nightfall Data Exfiltration for Google Drive (early preview): Nightfall has launched exfiltration prevention platform. Google Drive is the first tool that is currently supported by Nightfall for exfiltration prevention. Click here to learn more about this feature.
Sensitive Data Protection for Gmail: Nightfall now provides security against sensitive data exposure through emails; specifically Gmail. Click here to learn more about this feature.
Ability to Include and Exclude Drives in Google Drive Policies: Nightfall now provides you the flexibility to include or exclude specific drives from being scanned. you can configure these settings while creating a Google Drive policy. Click here to learn more about this feature.
Updates to ID document Classifiers: Nightfall has now updated the detectors that pick up shared drivers licenses, passports, credit cards, and us social security cards. Click here to learn more about this detector.
April 2024
This section enlists the feature enhancements released by Nightfall in April 2024.
Nightfall Sensitive Data Protection (early access): Nightfall sensitive data protection for emails is now available for early access. With this feature, you can protect sensitive data in your emails sent through Gmail. Click here to learn more about this feature.
In-product Announcements: Nightfall has now introduced in-product announcements. You can click the question mark icon a the bottom right of your screen from any Nightfall page and select the News option to view the latest announcements.
Support for directory Sync via Identity Providers (early preview): Nightfall now supports the Directory Sync feature. This feature is available in early access. With this feature, you can now import users and user groups via identity providers like Google Directory and Microsoft Entra ID. Click here to learn more about this feature.
March 2024
This section enlists the feature enhancements released by Nightfall in March 2024.
Introduction to GitHub Deduplication feature: Nightfall has introduced the deduplication feature for GitHub integration. This feature automatically detects and prevents duplicate entries of GitHub violations on the Violations page. You can refer to this document to learn more about this feature.
February 2024
This section enlists the feature enhancements released by Nightfall in February 2024.
Introduction of APIs to detect sensitive data: Nightfall has now introduced APIs to detect sensitive data in SaaS applications. You can use these APIs to You can use these APIs to fetch violations, search through violations, annotate findings, and so on. You can navigate to this link for API documentation for SaaS applications.
Introduction of the Independent ML Services: Nightfall now uses independent Machine Learning services to enable Real-Time File Scanning.
Enhanced Database Connection String Detector: The Database Connection string detector is now updated. This detector can now recognise URI-based, driver-based, and key-value pair based connection strings. Click here to learn more about this detector.
Enhancements to the Password Detector: The Password detector is now enhanced to recognise commonly used password placeholders in code. These placeholders are no longer identified as violations by the detector, thus reducing the false positive cases. Click here to learn more about this detector.
New "Ignore All" Option for Google Drive Violations: Nightfall now allows you to ignore all the current and future Violations arising out from a specific file in your Google Drive. Click here (refer to step 5) to learn more about this feature.
January 2024
This section enlists the feature enhancements released by Nightfall in January 2024.
Improvements to the Person Names Detector: The Person Names detector is now enhanced to recognize synthetic names from Brazil, Portugal, Mexico, Argentina, Spain, and Colombia countries.
New Pending and Resolved Tabs in Violation Management: The Violations page now has two new tabs, Pending and Resolved. The Pending tab displays the list of Violations to be resolved and the Resolved tab displays the list of Resolved and Ignored Violations.
Improvements to the Street Address Detector: The street address detector is now enhanced to identify Spanish and Portuguese street addresses, resulting in enhanced address detection.
Improvements to the Password Detector: The Password detector is now updated to recognize and ignore commonly used development environment passwords, environment variables, and encrypted passwords.
New Ignore All Option for Google Drive Violations: Nightfall now allows you to ignore all the current and future Violations arising out from a specific file in your Google Drive.
Automatic Annotation and Auto Resolution of Findings: Nightfall now allows you to automatically annotate all the findings that are similar to a Finding. With this feature, if all the Findings of a Violation are false positive the Violation is automatically ignored.
Introduction of Custom Date Range Filters: Previously, you could filter historic Dashboard and Violation data using fixed time frames like Last 7 Days, Last 30 Days, and so on. Nightfall now allows you to set custom date range filters on the Dashboard and Violations pages.
Product Updates 2023
November 2023
Delayed Remediation
Policy Level Alert Configuration
New Nightfall for MS Teams Integration
New Data Scanned Widget
End-users are now capable of taking remediation measures for data leak incidents caused by them.
Nightfall now allows you to delay automated remediation.
You can now configure alerts at the policy level as well.
You can now deploy Nightfall to prevent data leaks from MS Teams.
The new Data Scanned widget on the Nightfall widget displays the total data scanned by Nightfall. You can also view this data scanned for each integration.
October 2023
1. Nightfall for Notion
2. Bulk Actions
3. Nightfall for GitHub - Comments in pull requests
You can now deploy Nightfall to prevent data leaks from Notion.
Nightfall now allows you to perform an action on more than 50 violations simultaneously.
Nightfall now allows you to tag developers in pull request comments within GitHub. This enhancement requires additional permissions in the Nightfall app for GitHub. The new permissions required are:
Read access to code, commit statuses, and metadata
Read and write access to issues and pull requests
September 2023
Nightfall for Microsoft Teams
You can now deploy Nightfall to prevent data leaks from Microsoft Teams within your organization.
August 2023
Policies Workflow
Policies workflow is standardised for all Integrations.
August 2023
Nightfall for ChatGPT
You can deploy Nightfall to scan prompts in ChatGPT.
July 2023
Automated actions for Send to Jira
Violations UI updates
You can now configure Send to Jira as an automated action. Once set up, a violation is automatically forwarded to Jira as a ticket. Currently, you can send a violation to Jira manually. This functionality is pre-installed for Jira DLP customers with no additional app or connector to install. If you are not a Jira DLP user, you must first connect Nightfall to Jira.
Improved tabular view where rows of violations are visually scannable, while retaining information density.
A slide out content preview panel with much improved and scalable content architecture for features and experiences to come.
The addition of Policies and Detection Rules to the content preview
Content preview now offers,
May 2023
Annotating Findings
You can now act on a finding instantly from within the Violation dashboard. This will save you time on eliminating False positive and gaining attention to serious violations.
April 2023
Send to Jira. Applies to all integrations.
You can now send a violation to Jira as a ticket for easier tracking and resolution.
Note:
If you have Jira implemented, this feature already exists.
If you do not have Jira, you must install Jira to be able to use this functionality.
To send a violation to Jira,
Select the Finding on Violation console. The violation preview displays.
Click the ellipsis on the right end of the finding. A set of task options display in the menu.
Select Send to Jira. A Create Ticket in Jira pop up displays.
Select the Project.
Select the Issue Type.
Enter a name for the issue.
Enter any comments if required.
Click Send to Jira. The violation finding is now converted to a Jira ticket. The ticket can be assigned to user to resolve the issue from within Jira.
February 2023
Integration: Salesforce Service Cloud
Enhancement: Salesforce Support for platform events
Integration: Zendesk
Nightfall DLP for Salesforce now supports Salesforce Service Cloud. You can scan all the 8 standard objects and all associated standard, custom fields within the objects in Service Cloud using the same Nightfall package that supports Sales Cloud.
Nightfall DLP for Salesforce now supports platform events that utilize apex triggers to push updates to platform events Nightfall reads the updates from platform events and minimizes any impact of apex trigger limits to the Salesforce org.
Nightfall also creates triggers only for those objects, and fields that are defined in a policy instead of enabling trigger on all objects and fields.
Real-time scanning for Zendesk tickets is now available. Nightfall can:
. scan all tickets in real-time within a Zendesk instance.
. enable easy onboard and setup.
. support multiple instances.
. send slack, Email, and Webhook Alerts
January 2023
Enhancement: Advanced Secrets Detection
Detector: HIPAA PHI
Detector: File Detector- Based Exclusions
Redaction: Confluence
The Advanced Secrets Detection improves the accuracy of the existing API key detector and extends it to identify keys from top SaaS and Cloud vendors and determines if a vendor key is an active risk. Advanced API key detector performs using two models:
. Vendor-specific API key model - detects secrets from the top 25 SaaS and Cloud services. Nightfall labels the secret findings by vendor and service type and determines with the secret if it is an active risk.
. General API key model - an ML-based model encompassing the complete range of secrets types and forms. The model includes regex candidate scanning, a ML-based token model, and an ML-based context model.
Nightfall HIPAA Detector uses Artificial Intelligence (AI) to accurately identify the exposure of patient data with maximum accuracy and relevance. It uses 15 dimensions of patient data (like person name, Date of Birth, Social Security Number, address, diagnosis, medications, etc.) in concert.
You can now bulk ignore noise generated by known file sources, file types or any finding that matches an entry in a file-based dictionary.
You can do this by customizing a detector to ignore findings in a given file type, a given file of a match in a dictionary file. Customers can utilize existing dictionaries, file type detectors or file fingerprint detectors to author an exclusion rule.
Nightfall can perform manual or automated remediation action to redact text-based findings in pages and blog posts within Confluence.
Nightfall Product Updates 2022
December 2022
Enhancement: Detection Rules Page
Improved Search, improved detection rule creating and editing experience.
November 2022
Detector: File-Related Detectors
Remediation: Disabling Download in Google Drive
Enhancement: HTTP Header Support in Webhooks
Enhancement: Violations monitoring
Enhancement: Historical Scans
Integration: Slack - User and App exclusions
Nightfall now has new specialized file related detectors.
. File Fingerprint Detector - creates a unique hash of the sensitive files that enables you to receive alerts and discover where they are located or shared.
. File Type - Receive alerts when certain file types (like audio or video) are discovered. You can adhere to compliance policies that prohibit certain file types from being shared on particular applications or storage locations. These file types are detected regardless of file extension.
File Name - You can scan for sensitive data in file names a well as file content by setting the “scope” of detection on your Detectors. Use regular expressions to match either file extensions or file names.
A new remediation option is available for violations detected in Google Drive. From the violations console, administrator can disable download of offending files. Click More Options ellipsis (...) next to a violation finding to access the option.
You can now provide custom HTTP headers to alerts sent to webhooks. These headers may be used to support systems collecting SIEM data that do not allow for query string authentication as well as other purposes such as routing.
Enhancements for a simplified, efficient violation monitoring workflow:
. Finding type to be the first column as a stronger risk assessment vector.
. Age of violation is the primary way date and time are factored into risk assessment.
. Violation status is instantly visible/available with color-coded status pills.
. Improved UI reducing the amount of content displayed by removing policies, and integration columns.
Historical scans in Google Drive and Confluence are now disabled by default for all new Nightfall customers. You can reach out to Nightfall support to request historical scans in Google drive or Confluence. Existing customers shall continue to view historical scans from the console.
Nightfall administrators can instantly select specific users of apps whose messages must be excluded from scans. This feature is supported on both Slack Pro & Enterprise.
October 2022
Enhancement: Webhook alerts - Updated schema v2
Updated schema for webhook alerts enables you to:
1. Filter and report per tenant with a company UUID key/value pair in each alert.
2. Consolidate common fields into one, coherent core set that is shared across all integrations for consistent, out-of-the-box reporting and analytics across all integrations.
3. List all findings up to 1000 per alert removing aggregation/summary for detailed downstream reporting an analytics.
4. Remove findings results from JSON key names eliminating custom scripting required to extract and analyze findings.
5. Keep Integration specific information under integration metadata.
August 2022
Integration: Nightfall for Salesforce
Enhancement: Reporting
Salesforce data security and compliance is now available to all customers. Scan objects and fields in real-time and take remediation actions from Slack, email alerts or the Nightfall console to eliminate data exposure risks.
Customers can now navigate directly to Dashboard → Generate Reports to access four independent reports:
1. Policy violations report - Aggregation of violations along with distribution by confidence thresholds and status by the policy.
2. Highest risk users report - Aggregation of violations along with distribution by confidence thresholds and status by each user.
3. Total data scanned report - Summary of total data and items scanned per integration.
4. Sensitive data exposure report
July 2022
Remediation: Nightfall for Confluence
You can now set up remediation actions to be taken from your Confluence policies. Alerts can be used to trigger manual or automated actions.
June 2022
Integration: Nightfall for Salesforce
You can use Nightfall to scan sandbox and production organizations in Salesforce in real-time.
May 2022
Enhancement: Nightfall Console - Dashboard and Violations Monitoring
Real-time Scanning: Nightfall for Confluence
Remediation: Nightfall for Jira
The new Violations UI in the console now displays real-time visualizations that show:
. Violations with the distribution of active and resolved violations
. Distribution of violations cross all integrations with the ability filter to a specific integration
. Distribution of violations across detectors and policies
. Highest risk users with a flexibility to filter by integration likelihood, and detector
Scan all Changes in your Confluence environment in real-time and receive immediate alerts on any violations. The update includes user interface enhancements that simplify the configuration.
. Take automatic or manual remediation actions in Jira including:
. Notifying the file owner
. Redacting sensitive findings
. Deleting attachments
For more information, see Nightfall’s Jira Remediation Guide
January 2022
Enhancement: Nightfall for Slack, GDrive, Jira: Custom Notifications in Alerts
You can send custom notifications for Slack, Google Drive, and Jira alerts.
. Reference your internal security policy.
. Direct end users to helpful security resources from an alert notification.
Nightfall Product Updates 2021
November 2021
Redaction: Nightfall for Slack - Message Redaction
Nightfall Slack Enterprise are now able to use redaction as remediation action for messages.
September 2021
Remediation: Nightfall for GDrive
Nightfall has added actions to violation alerts for GDrive. You can take remedial action with a click.
August 2021
Integration: Nightfall for Slack
Nightfall’s revamped Slack Integration is now in GA, featuring:
. Enhanced policy flexibility.
. More context in end user alerts Updated UI.
June 2021
Enhancement: Alerts
Integration: Nightfall for Jira
View finding snippets within alerts from Nightfall's native integrations.
Easily locate findings in long documents or spreadsheets with many tabs.
Make judgements at a glance about a violation’s severity. 2. Real time scanning for Jira is available.
. Scan for all changes in Jira and receive immediate alert for any violations.
. New policy flexibility allows for multiple alert triggers per Jira Project.
Last updated
Was this helpful?