Release Notes for Cisco XDR 2.41

Getting Started

No new customer-facing features or updates in this release.

Control Center

Feature	Description	Help Topic
High Impact Incidents card removed from Dashboards	The High Impact Incidents card for Private Intelligence has been removed from the list of available cards in the Customize Dashboards dialog box. If the High Impact Incidents card is in an existing dashboard, a message is displayed informing you that the card is no longer available. Click Remove to remove the card from the dashboard.	Default Cards

Feature

Description

Help Topic

High Impact Incidents card removed from Dashboards

The High Impact Incidents card for Private Intelligence has been removed from the list of available cards in the Customize Dashboards dialog box.

If the High Impact Incidents card is in an existing dashboard, a message is displayed informing you that the card is no longer available. Click Remove to remove the card from the dashboard.

Default Cards

Incidents

Feature	Description	Help Topic
Incident correlation and analytics support for Cisco Secure Access integration	Security detections from Cisco Secure Access are now included in incident correlation and analytics in Cisco XDR.	Incidents Cisco Secure Access Integration

Feature

Description

Help Topic

Incident correlation and analytics support for Cisco Secure Access integration

Security detections from Cisco Secure Access are now included in incident correlation and analytics in Cisco XDR.

Incidents

Cisco Secure Access Integration

Investigate

No new customer-facing features or updates in this release.

Intelligence

Feature	Description	Help Topic
Filters added to Judgments tab on Intelligence page	You can now filter the list of judgments in the Judgments tab by expired judgments, private judgments created by you, disposition, observable type, severity, TLP, and source using the new Filters drawer. The new Hide expired judgments check box has also been added above the judgments list in the Judgments tab. Check the check box to hide judgments that have an expired date and time from the judgments list.	Judgments
Judgment Detail page added to Judgments tab on the Intelligence page	You can now click the new View judgment detail button in the Judgment drawer to open the Judgment Detail page. From this page, you can view an overview of the judgment, linked indicators, and the judgment in JSON format.	Judgments

Feature

Description

Help Topic

Filters added to Judgments tab on Intelligence page

You can now filter the list of judgments in the Judgments tab by expired judgments, private judgments created by you, disposition, observable type, severity, TLP, and source using the new Filters drawer.

The new Hide expired judgments check box has also been added above the judgments list in the Judgments tab. Check the check box to hide judgments that have an expired date and time from the judgments list.

Judgments

Judgment Detail page added to Judgments tab on the Intelligence page

You can now click the new View judgment detail button in the Judgment drawer to open the Judgment Detail page. From this page, you can view an overview of the judgment, linked indicators, and the judgment in JSON format.

Judgments

Automate

No new customer-facing features or updates in this release.

Assets

No new customer-facing features or updates in this release.

Client Management

No new customer-facing features or updates in this release.

Administration

No new customer-facing features or updates in this release.

Integrations

Feature	Description	Help Topic
Help updates	The following updates have been made to the Help: Updated the Detection Analytics and Correlation column from No to Yes for the Cisco Secure Access integration in the Cisco and Third-Party Integrations and Supported Capabilities topic. The following integration topics have been added to the Cisco XDR help: Cohesity DataProtect Integration, Cybereason Integration, Darktrace /NETWORK Integration, Elastic Cloud Integration, ExtraHop Reveal(x) 360 Integration, Ivanti Neurons for MDM Integration, Jamf Pro Integration, and Jira Cloud Integration. The links to the topics have been added to the Cisco and Third-Party Integrations and Supported Capabilities topic.	Cisco and Third-Party Integrations and Supported Capabilities Cisco Secure Access Integration Cohesity DataProtect Integration Cybereason Integration Darktrace /NETWORK Integration Elastic Cloud Integration ExtraHop Reveal(x) 360 Integration Ivanti Neurons for NDM Integration Jamf Pro Integration Jira Cloud Integration

Feature

Description

Help Topic

Help updates

The following updates have been made to the Help:

Updated the Detection Analytics and Correlation column from No to Yes for the Cisco Secure Access integration in the Cisco and Third-Party Integrations and Supported Capabilities topic.
The following integration topics have been added to the Cisco XDR help: Cohesity DataProtect Integration, Cybereason Integration, Darktrace /NETWORK Integration, Elastic Cloud Integration, ExtraHop Reveal(x) 360 Integration, Ivanti Neurons for MDM Integration, Jamf Pro Integration, and Jira Cloud Integration. The links to the topics have been added to the Cisco and Third-Party Integrations and Supported Capabilities topic.

Cisco and Third-Party Integrations and Supported Capabilities

Cisco Secure Access Integration

Cohesity DataProtect Integration

Cybereason Integration

Darktrace /NETWORK Integration

Elastic Cloud Integration

ExtraHop Reveal(x) 360 Integration

Ivanti Neurons for NDM Integration

Jamf Pro Integration

Jira Cloud Integration

Ribbon and Pivot Menu

No new customer-facing features or updates in this release.

Resources

No new customer-facing features or updates in this release.

Release Notes for Cisco XDR 2.41

New Features and Updates

Previous Release Notes