Product Updates

January 27 2026

Enhancements

  • Message Report error messaging is improved. When downloading a failed EML file, the UI now shows accurate and meaningful error information, improving clarity and troubleshooting.

  • Per‑Mailbox Delivery Details: The Message Report now displays Delivery Status and Delivery Error details per mailbox, improving visibility into message delivery issues. (Applicable for SMTP/Inline Mode Only)

Fixed Issues

  • Minor bug fixes.

December 16 2025

Enhancements

  • Policy exceptions by sender are available for Journal message sources. These rules allow you to create exceptions to your base policy for specific senders. Policy exceptions can be created under Configuration > Policy settings.

  • Deprecation of Message Rules: Allow List and Verdict Override

    The rules under Administration > Message Rules are deprecated and will be removed in a future release. Your rules are still available and functioning. You should recreate any Message Rule functionality using the new Policy exceptions rules under Configuration > Policy settings. Once new rules are created, they will take precedent over any existing Message Rules.

  • Policy exception rules can now be ranked. Drag and drop the items in the list to reorder them.

  • The Message Report is redesigned as part of Cisco's ongoing efforts to provide a more consistent experience across Security products. The refreshed look and feel now matches the rest of the Secure Email Threat Defense UI.

  • In the Message Report, links that are contained in a QR code are now indicated with a QR code icon.

Fixed Issues

  • XDR Ribbon Issue: You may have encountered an error while accessing certain response actions for observables. This issue arose due to changes in the XDR authentication requirements, which have now been addressed. If you continue to experience issues, re-authenticate the XDR ribbon to fix the problem.

  • Minor bug fixes.

December 04 2025

Enhancements

  • High Impact Personnel list improvements:

    • Click the number of impersonations in the last 30 days to pivot to a filtered list of the messages that were flagged as impersonations

    • Filter by Impersonated Users using the Messages page filter panel

  • SMTP/Inline message sources:

    • The Quick message filter on the Dashboard has new items for Policy exceptions and Security mailbox

    • Status and Action are added to the SPF/DKIM/DMARC tooltips when applicable

Fixed Issues

  • Minor bug fixes.

November 18 2025

Enhancements

  • SMTP/Inline message sources: Sender Authentication information (SPF, DKIM, DMARC) including pass/fail, reason, and action is now included in the Messages page export.

Fixed Issues

  • Minor bug fixes.

November 04 2025

Enhancements

  • Cisco Secure Email Threat Defense Inline mode is introduced with this release. Secure Email Threat Defense Inline offers real-time inline scanning and remediation. Inline mode improves detection speed and remediation capabilities by processing messages as they flow through the mail system, detecting threats and stopping them before reaching the end-user.

    New customers onboarding with an Advantage license can set up their businesses with SMTP/Inline message sources. Options include receiving traffic via SMTP or SMTP Relay.

  • URL bypass rules are new in this release. These rules can be configured to prevent specific URLs from being scanned. You can create these rules at Configuration > Global settings > URL rules.

  • Bypass Analysis Rules for Phish Test & Security Mailbox are relocated from Administration > Message Rules to Configuration > Global settings > Message bypass rules. Any existing rules are migrated to the new location and will behave in the same manner as before.

  • Spam and Graymail analysis defaults to On/Checked for newly created businesses.

  • Message view improvements:

    • Improved column resizing for Verdict, Action, and Date columns.

    • User column resizing is maintained in-browser, preventing resets after browser refreshes.

    • Introduced a more compact date/time format to optimize screen space usage.

    • Improved adjustments for table density and column show/hide options from the gear icon on the messages table

  • Documentation improvements:

    • User documentation is updated with new formatting and is now integrated with the UI.

    • Access the new documentation from the (?) menu in the top right corner of the UI.

Fixed Issues

  • Minor bug fixes.

October 17 2025

Enhancements

  • User Management Notifications. Notifications of user creation, changes, or user deletion by administrators are sent to a specified email address. To turn on these notifications, go to Administration > Business > Preferences.

  • Messages page improvements

    • You can now show/hide the top graph charts.

    • You can now select Copy message ID from the ... menu at the end of a message row.

Fixed Issues

  • Minor bug fixes.

October 07 2025

Fixed Issues

  • Minor bug fixes.

September 23 2025

Enhancements

  • The High Impact Personnel List can now contain up to 500 contacts. Additionally, the UI screens for the list are redesigned as part of Cisco's ongoing efforts to provide a more consistent experience across Cisco Security products.

Fixed Issues

  • Minor bug fixes.

September 09 2025

Enhancements

  • Ability to detect URLs in QR codes within the Log Export API for message event logs.

  • Admins can reclassify messages as Spam or Graymail, even if scanning for Spam and Graymail is disabled in the global policy.

  • Enhanced Remediation and Reclassification for API performance: batch processing support and improved stability to prevent timeouts

Fixed Issues

  • Minor bug fixes.

August 26 2025

Enhancements

  • Ability to resize columns on the Messages page.

  • For users with multiple tenants, they are now listed in alphabetical order in the account selector.

Fixed Issues

  • Minor bug fixes.