Important notice: heavy database migration ⚠️
Release 6.6.16 includes a migration script that cleans up the database following resolution of #10777. Purpose of the migration is to add missing group information on activity logs that were incorrectly generated, and make possible searching and filtering activity logs consistently with respect to the group criteria.
The impacted activity logs are those generated by the platform between 6.6.0 and 6.6.16.
On large platforms with millions of impacted activity records, this migration can take several hours.
We disabled this migration in OpenCTI 6.6.17.
For those who do not need to repair the activity logs and prefer skipping this heavy migration, you can update your platform from 6.6.15 (or a prior release) to 6.6.17 directly.
For those who wants to repair their database this way, you might want to update your platform to 6.6.16 and then to the latest version.
Bug Fixes:
- #11273 [Groups] Group ids are not identified in activity monitoring
- #10777 Can't filter by Group on Activity
- #10299 Indicator decay: update valid until and score when "revoked" changes.
- #9158 [Bulk Search] Searching with MD5 value doesn't work if my File also contains an SHA256
Pull Requests:
- [frontend] Fix bulk search with hashes (#9158) by @SouadHadjiat in #11245
- [backend] compute decay when revoked is changed(#10299) by @aHenryJard in #10714
- [backend] add missing group_ids in user origin (#11273) by @JeremyCloarec in #11275
Full Changelog: 6.6.15...6.6.16