Breadcrumbs

EnforceDNS R25.5


Release #

UI: R25.5, Agent: N/A

Date

What's New in EnforceDNS!

Custom User Groups

User Groups are now available in EnforceDNS, representing a major leap forward in policy management flexibility. Admins can now group users by agent-reported usernames and assign policies tailored to each group—enabling precise, role-aligned protection that mirrors how teams and departments are structured in the real world.

Admins can:

  • Create user groups that represent teams, roles, or departments using usernames reported by the EnforceDNS Agent.

  • Assign or update protection policies for each group.

  • Seamlessly adjust protections as teams evolve—group updates and policy changes take effect quickly, maintaining uninterrupted coverage.

Benefits

  • Aligned Protection: Match policy coverage to how your teams operate—ensuring relevant, effective protection.

  • Greater Resiliency: Reduce policy misfires and false positives by tailoring controls to the right user contexts.

  • Instant Impact: Changes to group membership or assigned policies apply in under a minute.

  • Scalable Structure: Easily manage protection across large organizations by grouping users by function.

Screenshot 2025-05-07 at 12.43.56 PM.png

DNS Exfiltration Attribution

EnforceDNS now improves visibility into DNS exfiltration-related detections by labeling them more clearly in log data and event details. While DNS exfiltration was already being actively blocked and flagged, users will now see explicit references to it in the interface.

Benefits

  • Clearer Threat Context: DNS queries flagged or blocked due to exfiltration concerns now display “HYAS Engine – DNS Exfiltration” in event details.

  • Improved Decision-Making: Greater transparency into detection reasons helps analysts prioritize and respond to threats more effectively.

  • No Changes to Protection Logic: EnforceDNS continues to block DNS exfiltration as before—this update purely enhances visibility.

Faster List Propagation

List updates now take effect much faster. When you modify block or allow lists, those changes are enforced much more quickly across the entire HYAS global architecture.

Benefits

  • Quicker Enforcement: Policy changes are reflected faster across your environment.

  • Enhanced Security Posture: Reduces the window of exposure during list updates.

  • More Responsive Operations: Supports rapid adjustments to evolving threats and access needs.