What’s newedit

Here are the highlights of what’s new and improved in Elastic Security!

For detailed information about this release, see the Release notes.

7.13 releaseedit

New featuresedit

New requirementsedit

7.12 releaseedit

New featuresedit

7.11 releaseedit

New featuresedit

7.10 releaseedit

Terminology changesedit

  • Ingest Manager has been renamed to Fleet.
  • Configuration has been renamed to Policy.

New featuresedit

7.9 releaseedit

In the 7.9 release, Elastic SIEM and Endpoint Security combined into a single unified app, Elastic Security. The following lists the new changes as a result of the merge.

Terminology changesedit

  • Signal detection rules have been renamed to detection rules.
  • Signals are now called detection alerts, which fall into one of the following categories:

    • Detection alerts: Alerts occurring within the Elastic Security from the rules engine.
    • External alerts: Alerts originating outside of Elastic Security.
    • Kibana alerts: Alerts native to Kibana (may not be security related).
  • Whitelist is now called the Exception list. Items added to the Exception list are known as exceptions.

Navigation changesedit

  • The former Alerts tab has been renamed to Detections.

    • The Alerts title page in the Detections tab has been renamed to Detection alerts.
    • Alert count has been renamed to Trend.
  • In the Overview tab:

    • Alert count has been renamed to Detection alert trend.
    • External alert count has been renamed to External alert trend.
  • A new tab, Administration, allows analysts to view and manage hosts running Elastic Endpoint Security. From this page you can also manage integrations and check the configuration status of hosts to ensure they’re protected.

New featuresedit