Release Notes 3.4.0
June 14, 2024
We are excited to introduce you to the latest version of Respond v3.4.0. This release includes a new feature and an enhancement.
New Layout for Incident Response New
Respond introduces the redesigned layout for incident response, elevating user experience, streamlining incident management, and reducing incident response time. The new layout includes the following key enhancements:
13 New Cards to Elevate Productivity: The summary tab consolidates all essential features for incident response into easily accessible cards, simplifying the incident management process. In addition, key features such as Playbooks, Time Tracking, Connect the Dots, and others are visually represented, helping users make faster and more informed decisions.
AI Assist for In-Depth Analysis: The introduction of AI Assist in Connect the Dots marks a leap forward in incident investigation capabilities. It analyzes the incident details and suggests related components, empowering users to effectively connect the dots and delve deeper into thorough investigations with ease and precision.
Actions and Playbooks combined for Effective Incident Management: Actions and Playbooks are now combined into a single, accessible tab which helps users quickly analyze actions and run related playbooks from the same tab. This reduces navigation time, enabling users to focus more on critical incident response activities.
Easy Access to Key Incident Response Tools: The new layout now includes a quick access bar that is easily accessible from all tabs and is positioned on the right-hand side of the interface. It includes essential features such as Automation, Playbooks, Connect the Dots, Input Required, and Notes, enabling users to swiftly perform incident response activities without navigating away from their current tasks. For example, quickly running a playbook to block an IP address is now more straightforward than ever.
Enhanced Connect the Dots for Efficient Incident Analysis: Connect the Dots tab now combines threat intel and components into a single tab. This helps users to see the bigger picture, understand correlations, and resolve incidents efficiently.
For more information, see Incident Response (New Layout).
Enhanced Threat Intel Processing
Previously, threat intel from incident details was processed in Respond and sent to Intel Exchange (CTIX) automatically for ingestion and enrichment. Administrators have the flexibility to choose if they want to process intel from incident details automatically or not. This enhances the efficiency of threat intel management in Respond.
This feature is available only in the new layout for incident response. For more information, see Configure General Settings and Configure Process Intel.