IMPORTANT: This site is planned to be decommissioned in 2026. Visit the Tanium Resource Center for all Tanium release notes, user guides, and support information. To view release notes in the Resource Center, see Tanium Release Notes.
IMPORTANT: If you are using semi-annual releases for on premises, see the Release notes for 2024H1 semiannual release, Release notes for 2024H2 semiannual release, or Release notes for 2025H1 semiannual release on the Tanium Resource Center.
Effective October 15, 2024: On prem release notes on the Tanium Knowledge Base are frozen. For release notes related to 7.4 or 7.5 Server and Solutions, see the Monthly updates for Tanium Version 7.4 and 7.5 Server and Solutions on the Tanium Resource Center.

Tanium Cloud Release Notes External Attack Surface Management

From Tanium Knowledge Base
Jump to navigation Jump to search

Product Documentation and Resources


Release Date: July 1, 2026

Improvements

  • Improved DNS name display in the host detail view from a comma-separated string to a scannable list.
  • Updated vulnerability and misconfiguration lists on web property and host detail panels to sort by severity descending and display each CVE as a single identifier.
  • Updated Host Inventory to reflect all agent-applied column filters in the grid header, including findings-count filters.
  • Updated Web Property Inventory to expose all column filters, including findings-count and severity filters, to the Atlas agent.
  • Improved Host Inventory search bar performance by optimizing the underlying graph query.
  • Improved performance of the Hosts with Critical Findings metric by optimizing the critical-severity query.

Resolved Issues

  • Fixed an issue where the Certificates Expiring Soon metric counted already-expired certificates in addition to certificates expiring within the next 30 days.
  • Fixed an issue where host vulnerability counts were capped at 100, causing actual finding totals to be under-reported in the inventory table and host details panel.
  • Fixed an issue where the year field in date filters accepted more than 4 digits, causing filters to evaluate incorrectly.


Release Date: June 30, 2026

Improvements

  • Added a Misconfigurations column to the Host Inventory table with sort support.
  • Updated the Host Inventory findings count to include misconfigurations, matching the detail panel.
  • Added Port/Service column to the Host Inventory table.
  • Added sort and filter support for date columns across Host, Certificate, and Web Property inventory tables.
  • Added date filter support for First Seen and Last Scanned columns in the Web Property inventory table.
  • Aligned the quick filter, refresh, and clear filter controls across all inventory views.
  • Aligned loading state and overlay behavior across Host, Web Property, and Certificate inventory views.

Resolved Issues

  • Fixed an issue where the Host Details panel would get stuck loading and not display content.
  • Fixed an issue where column widths reset to their default values after applying a filter or sort.
  • Fixed an issue where programmatically-applied date filters in Certificate Inventory did not display their date value in the column filter menu.
  • Fixed an issue where the Certificate Inventory filter indicator shifted position when toggling summary tiles.
  • Fixed an issue where the AI summary was not auto-generated when opening web property details from the inventory table.


Release Date: June 19, 2026

Features

Tanium External Attack Surface Management (EASM) is an Atlas-first solution that gives security teams continuous visibility into their organization's internet-facing attack surface (hosts, web properties, and certificates). With access to contextualized EASM data, Atlas enables security teams to ask complex questions and get actionable answers about their attack surface.

  • External Asset Inventory: An inventory of internet-facing hosts, web properties, and certificates associated with your organization, seeded from configured domains and IP ranges and refreshed every 6–8 hours. Users can search, filter, and browse all EASM asset types from Atlas.
  • Asset Investigation: Drill into any external asset to see its full context, including open ports, running services, identified software, TLS certificates, and discovery path, so users can assess exposure details and understand how an attacker sees a specific asset.
  • External CVE Findings: CVEs associated with externally-facing assets to show real-world exploitability so that remediation focuses on exposures that are both internet-exposed and actually exploitable from the inside.
  • HTTP Header & Service Risk Findings: HTTP header-based and service-level risk findings across external web properties and hosts, including missing security headers, insecure configurations, and exposed protocols.
  • Role-Based Access Control: Administrators can grant and restrict EASM access by role, separating read from write and user from operator, so security teams can safely extend external visibility.

Configuration Notes

Tanium External Attack Surface Management is built natively in Tanium Atlas, the modern, AI-powered console that brings investigation, prioritization, and action together in one place. EASM's inventory, investigation, and findings surfaces are designed from the ground up for the Atlas experience, taking full advantage of Atlas's natural-language search, contextual navigation, and unified workbench.

Customers must configure at least one seed (domain, IP address, or IP range) through the seed configuration settings before asset discovery begins. Seed configuration is handled through the EASM settings in Atlas.

Requirements

  • Tanium Data Service (TDS) 4.4 or later

Known Issues

  • The Host Details panel is not loading properly.