The following updates are scheduled to take effect on the Evident service on 8/29/2018:

Enhancements

• New Signature: AZU:MON-001 -Ensure that Activity Log Retention is set 365 Days or Greater
  Description: This signature scans to ensure that your activity logs as retained for 365 days or more and generates a FAIL alert if any are found that does not meet this security recommendation.
  Risk Level: Medium
• New Signature: AZU:SC-004 -Azure Security Center: System Updates
  Description: This signature scans all your resources to ensure that system updates recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-005 -Azure Security Center: Security Configurations
  Description: This signature scans all your resources to ensure that OS vulnerabilities recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-006 -Azure Security Center: Security Configurations
  Description: This signature scans all your resources to ensure that endpoint protection recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-007 -Azure Security Center: Disk Encryption
  Description: This signature scans all your resources to ensure that Disk encryption recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-008 -Azure Security Center: Network Security Groups
  Description: This signature scans all your resources to ensure that Network security groups recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-009 -Azure Security Center: Web Application Firewall
  Description: This signature scans all your resources to ensure that Web application firewall recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-010 -Azure Security Center: Next Generation Firewall
  Description: This signature scans all your resources to ensure that Next generation firewall recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-011 -Azure Security Center: Vulnerability Assessment
  Description: This signature scans all your resources to ensure that vulnerability assessment recommendations for virtual machines is enabled and returns a FAIL alert when one is found where it is not.
  Risk Level: Medium
• New Signature: AZU:SC-012 -Azure Security Center: Storage Encryption Description: This signature scans to ensure that your sources has enabled Storage Encryption recommendations and returns a FAIL alert if none is found. Risk Level: Medium
• New Signature: AZU:SC-013 -Azure Security Center: Adaptive Application Controls Description: This signature scans your resources to verify that your adaptive application controls are enabled and returns a FAIL alert if none is found. Risk Level: Medium
• New Signature: AZU:SC-015 -Azure Security Center: Phone Number
  Description: This signature scans to ensure that you have provided a security contact to Microsoft and generates a FAIL alert if one isn't found. Risk Level: Medium
• New Signature: AZU:SC-016 -Azure Security Center: Send Email Also to Subscription Owners Description: This signature scans to see if your security alerts emailing to subscription owners is enabled.
  Risk Level: Medium
• New Signature: AZU:NSG-026 -Outbound Network Communications
  Description: This signature scans NSG rules and if a rule that blocks internet outbound is not found, it returns a FAIL alert.
  Risk Level: Medium
• Dashboard Panels now sorts by name of the filtered option - External Accounts, SubOrgs, Teams, and total alert count.
• Evident now displays account numbers on Dashboard, Compliance Standards, Reports, and Alerts.  Standard Evident sorting features have been added to Disabled Signatures.
• Added an “Include New Account” checkbox allowing users to automatically add future external accounts to new Suppressions and Custom Signatures.
• AWS Only) New signatures will be disabled by default when released. To enable new signatures, use the toggle New AWS Signatures Disabled on Control Panel > Signaturesp age or Edit your Organization options on Control Panel > Organizationspage and check Enable New AWS Signatures. Users may now edit the service on their Custom Signatures to ensure that generated alerts contribute to the correct stats when displaying on the Dashboard.

Addressed Issues

• Addressed a problem with AZU:GR-003 producing extra alerts.
• Fixed an issue where creating new suppression from alert detail page leads to error 500.
• Corrected a problem with API POST signature_custom_risk_levels endpoint where it failed to return results.
• Addressed an issue with signature: AWS:IAM-011 where it failed to generate a pass or fail alert, if there are too many AWS roles defined