Tanium Cloud Release Notes External Attack Surface Management
Product Documentation and Resources
Release Date: July 1, 2026
Improvements
- Improved DNS name display in the host detail view from a comma-separated string to a scannable list.
- Updated vulnerability and misconfiguration lists on web property and host detail panels to sort by severity descending and display each CVE as a single identifier.
- Updated Host Inventory to reflect all agent-applied column filters in the grid header, including findings-count filters.
- Updated Web Property Inventory to expose all column filters, including findings-count and severity filters, to the Atlas agent.
- Improved Host Inventory search bar performance by optimizing the underlying graph query.
- Improved performance of the Hosts with Critical Findings metric by optimizing the critical-severity query.
Resolved Issues
- Fixed an issue where the Certificates Expiring Soon metric counted already-expired certificates in addition to certificates expiring within the next 30 days.
- Fixed an issue where host vulnerability counts were capped at 100, causing actual finding totals to be under-reported in the inventory table and host details panel.
- Fixed an issue where the year field in date filters accepted more than 4 digits, causing filters to evaluate incorrectly.
Release Date: June 30, 2026
Improvements
- Added a Misconfigurations column to the Host Inventory table with sort support.
- Updated the Host Inventory findings count to include misconfigurations, matching the detail panel.
- Added Port/Service column to the Host Inventory table.
- Added sort and filter support for date columns across Host, Certificate, and Web Property inventory tables.
- Added date filter support for First Seen and Last Scanned columns in the Web Property inventory table.
- Aligned the quick filter, refresh, and clear filter controls across all inventory views.
- Aligned loading state and overlay behavior across Host, Web Property, and Certificate inventory views.
Resolved Issues
- Fixed an issue where the Host Details panel would get stuck loading and not display content.
- Fixed an issue where column widths reset to their default values after applying a filter or sort.
- Fixed an issue where programmatically-applied date filters in Certificate Inventory did not display their date value in the column filter menu.
- Fixed an issue where the Certificate Inventory filter indicator shifted position when toggling summary tiles.
- Fixed an issue where the AI summary was not auto-generated when opening web property details from the inventory table.
Release Date: June 19, 2026
Features
Tanium External Attack Surface Management (EASM) is an Atlas-first solution that gives security teams continuous visibility into their organization's internet-facing attack surface (hosts, web properties, and certificates). With access to contextualized EASM data, Atlas enables security teams to ask complex questions and get actionable answers about their attack surface.
- External Asset Inventory: An inventory of internet-facing hosts, web properties, and certificates associated with your organization, seeded from configured domains and IP ranges and refreshed every 6–8 hours. Users can search, filter, and browse all EASM asset types from Atlas.
- Asset Investigation: Drill into any external asset to see its full context, including open ports, running services, identified software, TLS certificates, and discovery path, so users can assess exposure details and understand how an attacker sees a specific asset.
- External CVE Findings: CVEs associated with externally-facing assets to show real-world exploitability so that remediation focuses on exposures that are both internet-exposed and actually exploitable from the inside.
- HTTP Header & Service Risk Findings: HTTP header-based and service-level risk findings across external web properties and hosts, including missing security headers, insecure configurations, and exposed protocols.
- Role-Based Access Control: Administrators can grant and restrict EASM access by role, separating read from write and user from operator, so security teams can safely extend external visibility.
Configuration Notes
Tanium External Attack Surface Management is built natively in Tanium Atlas, the modern, AI-powered console that brings investigation, prioritization, and action together in one place. EASM's inventory, investigation, and findings surfaces are designed from the ground up for the Atlas experience, taking full advantage of Atlas's natural-language search, contextual navigation, and unified workbench.
Customers must configure at least one seed (domain, IP address, or IP range) through the seed configuration settings before asset discovery begins. Seed configuration is handled through the EASM settings in Atlas.
Requirements
- Tanium Data Service (TDS) 4.4 or later
Known Issues
- The Host Details panel is not loading properly.