What Changed
The ExtraHop RevealX connector package was reverted from version 3.0.2 back to a stable version (ExtraHopDataConnector302) to address unspecified customer-facing issues. The ARM deployment template now references the previous function app package URL.
Security Impact (Visibility & Fidelity)
Per the PR discussion indicating urgency and customer impact, deployments using the ExtraHop RevealX connector version 3.0.2 were experiencing issues that disrupted data ingestion from ExtraHop RevealX network detection and response systems. The reversion restores network visibility for affected customers.
ExtraHop RevealX provides network traffic analysis and behavioral detection capabilities — any ingestion disruption creates a blind spot for network-based threat detection, lateral movement detection, and east-west traffic monitoring. The urgent nature of this fix suggests production deployments were affected.
Affected Files
Solutions/ExtraHop/Data Connectors/ExtraHopDataConnector/azuredeploy_ExtraHop_AzureFunction.json
(packaging artefacts: ExtraHopDataConnector.zip, ExtraHopDataConnector302.zip, ReleaseNotes.md)