Release notes

New multi-framework security questionnaire

Toby Roger
Toby Roger
released Jul 17, 2024
Release notes imageNew multi-framework security questionnaire

We’ve developed a Multi-Framework Security Questionnaire that comprehensively maps to both ISO 27001:2022 and NIST CSF 2.0, and it is now available to all customers in the questionnaire library. This dual-standard approach offers a holistic view of a third party’s security posture, ensures robust incident response and recovery plans, and demonstrates a commitment to high security standards. We're excited to roll out even more questionnaires covering global and local regulations in coming releases.

Detection of regreSSHion (CVE-2024-6387)

CVE-2024-6387 is a high-severity vulnerability in OpenSSH servers that, if exploited, facilitates Remote Code Execution with full root privileges (CVSS 8.1). This will raise a verified vulnerability and the high severity risk “Vulnerable to CVE-2024-6387 (OpenSSH regreSSHion Remote Code Execution)“.

Detection for polyfill.io inclusions 

Recently the polyfill.io domain has taken new ownership. This has presented a new supply chain risk because they host the CDN for the polyfill JavaScript package. This will raise a new informational risk called "Polyfill.io or Polyfill.com Discovered"

Summary page added for Subsidiaries

For BreachSight plans that include subsidiaries, we’ve added a Subsidiary Summary page to allow you to view the security posture of your subsidiaries in more detail, including category breakdowns and geolocation details. To learn more see What is the subsidiary summary page.

Other improvements

  • This release includes a number of bug fixes
  • Check icon
  • Check icon
  • Check icon
  • Check icon
  • Check icon
Book a free demo
View all release notes

UpGuard Release Notes

Learn about new features, changes, and improvements to UpGuard.
Expanded News and Incident coverage
UpGuard logo
Expanded News and Incident coverage
Abstract image background

Expanded News and Incident coverage

Expanded News and Incident coverage
Toby Roger
November 20, 2024
NIST AI Risk Management Framework (AI RMF) security questionnaire
UpGuard logo
NIST AI Risk Management Framework (AI RMF) security questionnaire
Abstract image background

NIST AI Risk Management Framework (AI RMF) security questionnaire

NIST AI Risk Management Framework (AI RMF) security questionnaire
Toby Roger
November 7, 2024
Enhanced Vendors view and export
UpGuard logo
Enhanced Vendors view and export
Abstract image background

Enhanced Vendors view and export

Enhanced Vendors view and export
Toby Roger
October 23, 2024
Invite colleagues to collaborate on security questionnaires
UpGuard logo
Invite colleagues to collaborate on security questionnaires
Abstract image background

Invite colleagues to collaborate on security questionnaires

Invite colleagues to collaborate on security questionnaires
Toby Roger
October 9, 2024
Remediate risks faster with built-in guidance
UpGuard logo
Remediate risks faster with built-in guidance
Abstract image background

Remediate risks faster with built-in guidance

Remediate risks faster with built-in guidance
Toby Roger
September 25, 2024
Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
UpGuard logo
Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
Abstract image background

Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF

Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
Toby Roger
September 11, 2024
View all release notes
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating
UpGuard logo
UpGuard is a complete third-party risk and attack surface management platform.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Contact sales
Free trial
Products
Tools
Company
Insights
Products
Compare
Solutions
Company
Insights
© UpGuard, Inc.
Research GuidelinesPlatform Terms & ConditionsWebsite Terms & ConditionsPrivacyCookies