Following on from the addition of risk assessment summary information to the Vendors page, we’ve added a new report showing risk assessment status across your vendors.
The report will give you a useful snapshot to help you:
- Track and follow up on the status of your in-progress risk assessments
- See which vendors are due for re-assessment, to help you plan for and schedule assessment activity
- See which vendors have not been assessed, so you can plan for future assessments
To learn more see How to generate a vendor risk assessment summary report
Additional risks for domain hijacking
We have added additional risks for domains at risk of hijacking. If a domain's DNS records point to an expired or unregistered domain, attackers can register that domain and gain access to part of the target's domain namespace. In this release we’ve added subdomain takeover detection for the following additional services:
- Shopify
- Campaign Monitor
- Kajabi
- SmartJobBoard
- HatenaBlog
- Worksites
- Uptimerobot
- Help Juice
To learn more see How does UpGuard detect sites at risk of subdomain takeover?
Incorporating Managed Vendors into Vendor Risk, and Data Leaks into BreachSight
In order to simplify our navigation and product offering, we have removed the Cyber Research section in UpGuard. Existing customers will now find Data Leaks included in the BreachSight section, and Managed Vendors included in the Vendor Risk section of the application. There are no changes to entitlements, plans, or the service levels of these products.
Other improvements
- We’ve made a few more improvements to the Notifications page, to re-order sections and add clearer description text for some notifications.
- This release includes a number of bug fixes.
UpGuard Release Notes
See UpGuard In Action
Free instant security score
How secure is your organization?
