Features and Enhancements in Version 12.1
- hCAPTCHA - Added support for hCAPTCHA for enhanced protection of websites from spam or any other type of automated abuse like BOTS, etc.
- Account Take Over Protection – Login failures for servers responding with 200 OK response code and error message in the response page can now be detected based on the response data. The Auth Response Identifier in the Brute Force policy should be configured to enable this capability.
- The base platform has been upgraded to address newer SSL and other platform-related vulnerabilities.
- A newer version of fingerprinting for more efficient fingerprinting of the browsers and enhanced web driver detection strategies are made available.
Fixes in Version 12.1
- An issue that resulted in requests being landed on the backup server even when the primary server is up and healthy. This occurred when the server is identified by hostname. The issue is now resolved
- An issue in reCAPTCHAv3 that caused a glitch in the web accesses when the feature is used, is now resolved.
- CAPTCHA policy does not enforce the CAPTCHA challenge if the service is configured in Passive mode.