---
sidebar: sidebar
permalink: whats-new.html
keywords: what's new, features, new, release notes, bugs, limitations, known issues, enhancements, fixes, ransomware protection, bluexp, anti-ransomware, cyber attack, ransomware, protection, detection, ARP, netapp
summary: Learn what's new in NetApp Ransomware Resilience.
---
= What's new in NetApp Ransomware Resilience
:hardbreaks:
:nofooter:
:icons: font
:linkattrs:
:imagesdir: ./media/
[.lead]
Learn what's new in NetApp Ransomware Resilience.
// tag::whats-new[]
== 06 October 2025
include::_whatsnew/2025-10-06.adoc[]
== 15 July 2025
include::_whatsnew/2025-07-14.adoc[]
== 9 June 2025
include::_whatsnew/2025-06-09.adoc[]
== 13 May 2025
include::_whatsnew/2025-05-13.adoc[]
== 29 April 2025
include::_whatsnew/2025-05-12.adoc[]
== 14 April 2025
include::_whatsnew/2025-04-14.adoc[]
// end::whats-new[]
== 10 March 2025
include::_whatsnew/2025-03-15.adoc[]
== 16 December 2024
include::_whatsnew/2024-11-31.adoc[]
== 7 November 2024
include::_whatsnew/2024-11-07.adoc[]
== 30 September 2024
include::_whatsnew/2024-09-30.adoc[]
== 2 September 2024
include::_whatsnew/2024-09-02.adoc[]
== 5 August 2024
=== Threat detection with Splunk Cloud
You can automatically send data to your security and event management system (SIEM) for threat analysis and detection. With previous releases, you could select only the AWS Security Hub as your SIEM. With this release, you can select the AWS Security Hub or Splunk Cloud as your SIEM.
//For details, refer to link:rp-use-settings.html[Configure BlueXP ransomware protection settings].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-settings.html[Learn more about configuring BlueXP ransomware protection settings].
== 1 July 2024
=== Bring your own license (BYOL)
With this release, you can use a BYOL license, which is a NetApp License File (NLF) that you obtain from your NetApp Sales Rep.
//link:rp-start-licenses.html[Learn more about setting up licensing].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-start-licenses.html[Learn more about setting up licensing].
=== Restore application workload at the file level
Before you restore an application workload at the file level, you can now view a list of files that might have been impacted by an attack and identify those you want to restore. You can let BlueXP ransomware protection choose the files to restore, you can upload a CSV file that lists all the files impacted by an alert, or you can manually identify which files you want to restore.
NOTE: With this release, if all BlueXP Connectors in an account are not using Podman, the single file restore feature is enabled. Otherwise, it is disabled for that account.
//link:rp-use-recover.html[Learn more about recovering from a ransomware attack].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-recover.html[Learn more about recovering from a ransomware attack].
//+
//With this release, you can restore application workloads at the file level to the original source system and create a new path inside the volume if you want or to a different system.
=== Download a list of impacted files
Before restoring an application workload at the file level, you can now access the Alerts page to download a list of impacted files in a CSV file and then use the Recovery page to upload the CSV file.
//link:rp-use-recover.html[Learn more about downloading impacted files before restoring an application].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-recover.html[Learn more about downloading impacted files before restoring an application].
=== Delete protection plan
With this release, you can now delete a ransomware protection strategy.
//link:rp-use-protect.html[Learn more about protecting workloads and managing ransomware protection strategies].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about protecting workloads and managing ransomware protection strategies].
== 10 June 2024
=== Snapshot copy locking on primary storage
Enable this to lock the snapshot copies on primary storage so that they cannot be modified or deleted for a certain period of time even if a ransomware attack manages its way to the backup storage destination.
//link:rp-use-protect.html[Learn more about protecting workloads and enabling backup locking in a ransomware protection strategy].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about protecting workloads and enabling backup locking in a ransomware protection strategy].
=== Support for Cloud Volumes ONTAP for Microsoft Azure
This release supports Cloud Volumes ONTAP for Microsoft Azure as a system in addition to Cloud Volumes ONTAP for AWS and on-premises ONTAP NAS.
https://docs.netapp.com/us-en/bluexp-cloud-volumes-ontap/task-getting-started-azure.html[Quick start for Cloud Volumes ONTAP in Azure^]
https://docs.netapp.com/us-en/bluexp-ransomware-protection/concept-ransomware-protection.html[Learn about BlueXP ransomware protection].
=== Microsoft Azure added as a backup destination
You can now add Microsoft Azure as a backup destination along with AWS and NetApp StorageGRID.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-settings.html[Learn more about how to Configure protection settings].
== 14 May 2024
=== Licensing updates
You can sign up for a 90-day free trial. Soon you be will be able to purchase a pay-as-you-go subscription with Amazon Web Services Marketplace or bring your own NetApp license.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-start-licenses.html[Learn more about setting up licensing].
=== CIFS protocol
The service now supports on-premises ONTAP and Cloud Volumes ONTAP in AWS systems using both NFS and CIFS protocols. The previous release supported only the NFS protocol.
=== Workload details
This release now provides more details in the workload information from the Protection and other pages for improved workload protection assessment. From the workload details, you can review the currently assigned policy and review the configured backup destinations.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about viewing workload details in the Protection pages].
=== Application-consistent and VM-consistent protection and recovery
You can now perform application-consistent protection with NetApp SnapCenter Software and VM-consistent protection with SnapCenter Plug-in for VMware vSphere, achieving a quiescent and consistent state to avoid potential data loss later if recovery is needed. If recovery is required, you can restore the application or VM back to any of the previously available states.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about protecting workloads].
=== Ransomware protection strategies
If snapshot or backup policies do not exist on the workload, you can create a ransomware protection strategy, which can include the following policies that you create in this service:
** Snapshot policy
** Backup policy
** Detection policy
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about protecting workloads].
=== Threat detection
Enable threat detection is now available using a third-party security and event management (SIEM) system. The Dashboard now shows a new recommendation to "Enable threat detection" which can be configured on the Settings page.
//* *Enable threat detection* using third-party security and event management (SIEM) or extended detection and response (XDR) server. The Dashboard now shows a new recommendation to "Enable threat detection" which can be configured on the Settings page.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-settings.html[Learn more about configuring Settings options].
=== Dismiss false positive alerts
From the Alerts tab, you can now dismiss false positives or decide to recover your data immediately.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-alert.html[Learn more about responding to a ransomware alert].
=== Detection status
New detection statuses appear on the Protection page showing the status of the ransomware detection applied to the workload.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about protecting workloads and viewing protection statuses].
=== Download CSV files
You can download CSV files* from the Protection, Alerts, and Recovery pages.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-reports.html[Learn more about downloading CSV files from the Dashboard and other pages].
=== Documentation link
View documentation link is now included in the UI. You can access this documentation from the Dashboard vertical *Actions* image:button-actions-vertical.png[Vertical Actions option] option. Select *What's new* to view details in the Release Notes or *Documentation* to view the BlueXP ransomware protection documentation Home page.
=== BlueXP backup and recovery
The BlueXP backup and recovery service no longer needs to be already enabled on the system. See link:rp-start-prerequisites.html[prerequisites]. The BlueXP ransomware protection service helps configure a backup destination through the Settings option. See link:rp-use-settings.html[Configure settings].
=== Settings option
You can now set up backup destinations in BlueXP ransomware protection Settings.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-settings.html[Learn more about configuring Settings options].
== 5 March 2024
=== Protection policy management
In addition to using predefined policies, you can now create policies. https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about managing policies].
=== Immutability on secondary storage (DataLock)
You can now make the backup immutable in secondary storage using NetApp DataLock technology in the object store. https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-protect.html[Learn more about creating protection policies].
=== Automatic backup to NetApp StorageGRID
In addition to using AWS, you can now choose StorageGRID as your backup destination. https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-settings.html[Learn more about configuring backup destinations].
=== Additional features to investigate potential attacks
You can now view more forensic details to investigate the detected potential attack. https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-alert.html[Learn more about responding to a detected ransomware alert].
=== Recovery process
The recovery process was enhanced. Now, you can recover volume by volume or all volumes for a workload. https://docs.netapp.com/us-en/bluexp-ransomware-protection/rp-use-recover.html[Learn more about recovering from a ransomware attack (after incidents have been neutralized)].
https://docs.netapp.com/us-en/bluexp-ransomware-protection/concept-ransomware-protection.html[Learn about BlueXP ransomware protection].
== 6 October 2023
The BlueXP ransomware protection service is a SaaS solution for protecting data, detecting potential attacks, and recovering data from a ransomware attack.
For the preview version, the service protects application-based workloads of Oracle, MySQL, VM datastores, and file shares on on-premises NAS storage as well as Cloud Volumes ONTAP on AWS (using the NFS protocol) across BlueXP organizations individually and backs up data to Amazon Web Services cloud storage.
The BlueXP ransomware protection service provides full use of several NetApp technologies so that your data security administrator or security operations engineer can accomplish the following goals:
* View ransomware protection on all your workloads at a glance.
* Gain insight into ransomware protection recommendations
* Improve protection posture based on BlueXP ransomware protection recommendations.
* Assign ransomware protection policies to protect your top workloads and high-risk data against ransomware attacks.
* Monitor the health of your workloads against ransomware attacks looking for data anomalies.
* Quickly assess the impact of ransomware incidents on your workload.
* Recover from ransomware incidents intelligently by restoring data and ensuring that reinfection from stored data does not occur.
https://docs.netapp.com/us-en/bluexp-ransomware-protection/concept-ransomware-protection.html[Learn about BlueXP ransomware protection].