This release focuses primarily on bug fixing, security hardening, and key backend improvements across Take Control Cloud. It also includes initial enhancements aligned with security integrations, including new audit log event tracking and IP validation features.

Security Improvements

• Pre-Session Authentication Logging: Failed login attempts and other pre-session events are now captured and shown in the Audit Log and Notifications areas, enhancing visibility and auditing capabilities.

System Shell Recording Enhancements

• New System Shell session videos are now properly displayed in the Admin Area Session Reports, Windows Console Session History, and Web Session Reports.

Stability and Bug Fixes

• Fixes to improve backend processing, login flows, and script history accuracy.

Blocked IP Detection and Access Control

As part of our continued investment in Take Control cloud security, we’ve introduced a new capability that helps partners monitor and restrict login activity from IP addresses associated with VPNs, Proxies, and Tor networks.

How it works

• By default, Take Control does not block these connections. However, all login attempts originating from IP addresses flagged as potentially problematic (e.g., VPN, Proxy, Tor) are now detected and logged. This provides admins with greater visibility into who is accessing their systems and from where.

• A new security setting is now available in the Admin Area > Profile > Identification > Security tab (see screenshot). Admins can choose to block login access to the Admin Area and/or Technician Console from these IP types by enabling the toggles: “Block access to Admin Area from VPN, Proxy or Tor endpoints” and “Block access to Tech Console from VPN, Proxy or Tor endpoints”. When these options are enabled, login attempts from flagged IPs will be actively rejected before access is granted.

How Detection Works

• We leverage the Udger IP reputation database, a commercial and continuously updated service, which classifies known IPs used by VPNs, anonymizers, proxies, and Tor exit nodes. This ensures a high-quality, accurate, and up-to-date detection mechanism.

This means that

• Detection is always active and logged.
• Blocking is optional and configurable per area (Admin Area / Console).
• Helps improve security posture and reduce potential misuse of remote access by anonymized or spoofed locations.

Note: This is a large release with multiple dependencies. The rollout will happen progressively during the week.