What's New

The following new features are available in Cloud App Security.

Table 1. New Features in This Release (Available on August 25, 2019)



Protection for Microsoft Teams

Cloud App Security adds Microsoft Teams into its protected application family and provides real-time Advanced Threat Protection and Data Loss Prevention for files stored in the teams of your organization.

In this release, manual scan is not supported.

Approved Exchange Online Users

Cloud App Security provides a global setting for the administrator to add Exchange Online users whose email accounts will be excluded from scanning during policy enforcement when the user is among selected targets in the corresponding policies.

Default Advanced Threat Protection policy working in monitor mode for all protected services

Besides Exchange Online, SharePoint Online, and OneDrive for Business, Cloud App Security adds a monitor-mode default ATP policy to the other protected services, that is, Box, Dropbox, Google Drive, Gmail, and Microsoft Teams.

Table 2. New Features Available on July 14, 2019



Launch of the Australia Serving site

In addition to the EU, U.S. (global) and Japan sites, Cloud App Security opens a new serving site to provide its advanced protection for Australian customers.

Manual scan for the Gmail service

Cloud App Security enhances its protection of Gmail by enabling on-demand (manual) scans on email messages in protected Gmail mailboxes.

More actions available for Writing Style Analysis

Cloud App Security provides more actions (Quarantine and Delete for Exchange Online, and Delete for Gmail) for the administrator to deal with email messages detected as BEC scams by Writing Style Analysis.

One more default Advanced Threat Protection policy for Office 365 services

Cloud App Security adds a new default ATP policy to each protected Office 365 service for monitoring purposes. This policy will work in monitor mode to only record email messages and files delivered to target users in logs without taking actions.

Enhancement to the Approved/Blocked URL List for Web Reputation

Cloud App Security supports adding URLs with query parameters into the Approved/Blocked URL List of the Web Reputation filter.

Link to details about Malware Scanning detected threats

Cloud App Security adds a link on the Logs page to each threat detected by the Malware Scanning filter so that the administrator can view more information about the threat.

Optimized scanning and analyzing process for Virtual Analyzer

Cloud App Security optimizes the scanning and analyzing process of the Virtual Analyzer filter to further ensure zero impact on mail flow and file sharing for the Office 365 services.

Writing Style Analysis optimization for one more language

In addition to English, German, and French, Cloud App Security provides enhanced protection to detect BEC scams in email messages written in or containing Spanish as the Writing Style DNA technology is optimized for this language.

Table 3. New Features Available on May 26, 2019



Policy violation notification for internal Box users only

Cloud App Security allows the Box administrator to choose during Data Loss Prevention (including Keyword Extraction) policy configuration whether to notify a user of policy violation details if the user triggering the violation is an external user.

More granularity to take actions on password-protected files in Malware Scanning

Cloud App Security allows the administrator to take separate actions on password-protected compressed files and other password-protected files when configuring the Malware Scanning settings in an Advanced Threat Protection policy.

Separate condition rules and actions for each file format in Keyword Extraction

Cloud App Security allows the administrator to create separate condition rules for each file format in Keyword Extraction and set actions for each condition rule respectively.

Protection of Gmail in the G Suite Basic edition

In addition to G Suite Business and G Suite Enterprise, Cloud App Security provides Gmail protection for users using the G Suite Basic edition.

Table 4. New Features Available on April 14, 2019



Real-time protection enhancement for Gmail

Cloud App Security enhances its real-time protection for Gmail by opening more functions including advanced spam protection, writing style analysis for BEC detection, Computer Vision and dynamic URL scanning for phishing detection.

Automation and Integration APIs

Cloud App Security opens up HTTPS-based RESTful APIs for admins to obtain security event logs from Cloud App Security to their organizations’ servers, search for specific email messages, and take actions on email messages and user accounts as necessary. The API request and response bodies is formatted in JSON.

Synchronization of partial targets during Office 365 provisioning

Cloud App Security allows admins to choose to synchronize some rather than all users, groups or site collections during Office 365 provisioning for testing purposes.

Writing style analysis optimization for one more language

Cloud App Security takes advantage of the further optimized Writing Style DNA technology to protect email messages written in or containing the following language: Spanish (preview).

Table 5. New Features Available on March 3, 2019



Display of policy violating content in Data Loss Prevention logs on Control Manager dashboard

Cloud App Security transfers the content that violates Data Loss Prevention policies to Trend Micro Control Manager so that admins can view the violating content on Control Manager dashboard, with sensitive data masked or unmasked as configured in the corresponding Cloud App Security Data Loss Prevention policies.

Writing Style Analysis optimization for two more languages

In addition to English, Cloud App Security provides enhanced protection to detect BEC scams in email messages written in or containing German and French as the Writing Style DNA technology is optimized for these two languages.

Table 6. New Features Available on January 13, 2019



New provisioning approach for Exchange Online (preview)

Cloud App Security uses the OAuth authorization framework to provide one more approach to Exchange Online provisioning (initial provision only), which does not require creation of an Exchange Online Delegate Account.

More granularity to bypass internal emails detected as other spam

Cloud App Security provides an option for admins to choose to pass and deliver all the email messages sent from internal domains if Cloud App Security detects them as other spam but admin treats them as normal messages based on your organization's security policies, to help reduce false positives.

Dynamic URL scanning enhancement for more phishing detections

Cloud App Security applies dynamic URL scanning to a wider range of URLs, after they are scanned by Web Reputation Services, to keep users from more zero-day phishing attacks.