Up to 64 worker nodes can now be configured to integrate the standard active-active cluster configuration. A worker node is focused only on processing email, with only administrator access for maintenance and monitoring. All data collected by a worker, including scan results and quarantined email, is asynchronously transferred to the mail cluster for user access and daily usage.

URLSand IoC (Indicators of Compromise), which are currently utilized to block threats, will now seamlessly integrate with Threat Remediation, facilitating prompt risk mitigation. Upon detection of a compromised message that has been delivered, it will be automatically recalled and securely relocated to the recycle bin on remote servers. Additionally, the quarantine retention period is extended for subsequent analysis. This feature ensures proactive threat mitigation and sustains
a secure email environment for end users.

This feature is not available for MSSP licenses.

The Domain Summary Page now includes comprehensive details on MX, SPF, DKIM, and DMARC records. This feature offers a complete overview of the current records and validates their configuration related to the ESG appliance. Additionally, it integrates with Libraesva LetsDMARC, facilitating easier domain management and enhancing email security insights.

Configuration made in the web interface aren't immediately replicated to the scanner engine. In this new release, when there are pending configuration changes a single "Apply settings" action is shown in the main navigation bar. This will greatly ease system administration, since multiple changes can be collected and applied atomically, without having to recall all settings that need engine update.

Data storage is primarily occupied by stored emails, which are highly sensitive and accessed infrequently by the application. With this release, emails are encrypted upon writing and compressed during idle time, ensuring increased security and saving an average of 30% of storage space. In a clustered setup, storage synchronization now exclusively monitors compressed files, conserving network bandwidth and reducing I/O accesses.

With the addition of MTA-STS, ESG enhances the confidentiality of email communications and strengthens email security by automatically enforcing verified and encrypted TLS connections between mail servers that announce policies via DNS. Administrators retain the flexibility to define local rules that supersede globally defined domain rules, enabling tailored security configurations that align with specific organizational requirements.

MSSPs can now initiate trial domains to enhance the onboarding process for new clients, all without incurring additional expenses. These trials have a duration of 30 days, providing ample time for evaluation. Throughout the trial period, email addresses associated with the trial domains are exempt from license usage metrics but are distinctly labeled as "trial" in delivery records.

This feature is available only for MSSP licenses.