Release Notes
This page displays the changelog for ESET Threat Intelligence (up to the last ten releases with the latest version on the top). See also the release dates and the latest versions of ESET products.
Version 2.3.0.0
•New: APT tagging feature, enhancing users’ ability to track and analyze Advanced Persistent Threats (APTs) more effectively
•New: ESET AI Advisor streaming, which enables users to receive answers word by word in real time, eliminating the need to wait for the entire response to load
•Added: MISP UUID and Report Issue ID in APT Report Detail in the sidebar
•Added: Automatic deactivation of unused YARA rulesets
•Added: Login button to account approval email notification
•Improved: Other bug fixes and back-end improvements
•MISP tags:
oUpdated: tlp:amber to tlp:amber+strict
oAdded: new tags: Activity Report and Threat Report
oUpdated: MonthlyOverview tag to Monthly Overview
oUpdated: MonthlyDigest tag to Monthly Digest
•MISP Galaxies:
oUpdated: all MISP events were updated with ESET Threat Actor galaxies
•MISP Events:
oUpdated: PDFs will no longer be attached to events (as of March 2025); instead, a direct download link and API ID to the ETI portal will be provided within MISP fields
oUpdated: MISP victim objects:
▪Fixed: typos in country names and verticals
▪Fixed: objects where verticals were not in MISP victim object definition (https://github.com/MISP/misp-objects/blob/12c4d69bce296588e94715a559ab380ed99dc126/objects/victim/definition.json#L79)
▪Fixed: the issue where an event contains one victim object with multiple attributes instead of one victim object per victim/vertical
▪Events that did not have the victim object (before mid-2022) stay without the victim object
oFixed: old MISP events info that did not respect the name convention
oFixed: old Activity Summary did not have a Report event
oAdded: Monthly Digest extends the Monthly Overview that extends the Activity Summary and Technical Analysis of the month
oAdded: old and recent Pre-Release (PRE) events
Version 2.2.0.0
•Added: TAXII server—9 new feeds (Android threats, Android infostealer, Cryptoscam, Malicious email attachments, Phishing URL, Ransomware, Scam URL, Smishing, SMS scam)
•Improved: TAXII server—APT feed performance improvement
•Added: Display the number of unread items in the menu
•Added: Filter for read/unread items (reports, YARA matches)
•Improved: Limit history length of chat conversation that is sent with each question in ESET AI Advisor
•Improved: UI for generation of TAXII credentials
•Improved: Other bug fixes and back-end improvements
Version 2.1.1.0
•Improved: Reports now contains also rename operations for the Windows registry keys
•Improved: Other bug fixes and back-end improvements
Version 2.1.0.0
•Added: ESET AI Advisor for customers with APT reports PREMIUM license
•Improved: Taxii feeds: Identity, Malware, DomainName, IPv4/IPv6Address, and Location SDO identifiers are unique for the same data. Uniqueness is guaranteed up to 30 days after the last object update