Release notes

Remediate risks faster with built-in guidance

Toby Roger
Toby Roger
released Sep 25, 2024
Release notes imageRemediate risks faster with built-in guidance

We're making it easier to understand and explain web risks by introducing Risk Remediation Guidance to BreachSight and Vendor Risk. This update offers detailed explanations of each risk, its importance, and how to remediate it, enabling swift action even for non-technical users. With Risk Remediation Guidance, BreachSight users can act more decisively, resolving risks efficiently with clear instructions, while vendors gain deeper insights to better understand and mitigate risks.

Digital Operational Resilience Act (DORA) questionnaire

We’ve introduced a new questionnaire to assess an organization’s adherence to the Digital Operational Resilience Act in the EU. In effect from January 17 2025, DORA addresses gaps in EU financial regulation by requiring financial institutions to manage ICT-related risks and operational resilience alongside traditional capital allocation for risk management.

Introducing Vendor Snapshots

Vendor Snapshots (previously Instant Reports) allow you to view the external risks of an organization for 30 days without adding it to your monitored vendor list. It’s perfect for when you need a point-in-time view of a vendor's security posture, such as when assessing or comparing potential vendors as part of a due diligence process.

Improvements that have been implemented as part of this release:

  • Renamed feature to Vendor Snapshot to better reflect the functionality
  • Made it easier to convert a Vendor Snapshot to a monitored vendor including retaining a view of expired snapshots
  • Ability to include Vendor Snapshots in the vendor comparison tool and report
  • Inclusion of Vendor Snapshots in vendors page exports (Excel and PDF)
  • Changes to Vendor Snapshot entitlements: Enterprise plans will have unlimited Vendor Snapshots, Professional and Corporate plans will have a set number included, and all Vendor Risk plans will be eligible to purchase additional snapshots

To learn more see What is the difference between a Vendor Snapshot and a Monitored vendor?

Configuration Leak Detection

Our web scanner now detects client-side and server-side configuration leaks, enhancing protection against exposed API keys and configuration files. This update strengthens BreachSight and Vendor Risk by improving proactive risk detection for customers and their vendors.

Other improvements

  • Each page now has its own title tag, which makes it easier to differentiate between multiple tabs in your browser
  • This release includes a number of bug fixes
  • Check icon
  • Check icon
  • Check icon
  • Check icon
  • Check icon
Book a free demo
View all release notes

UpGuard Release Notes

Learn about new features, changes, and improvements to UpGuard.
Invite colleagues to collaborate on security questionnaires
UpGuard logo
Invite colleagues to collaborate on security questionnaires
Abstract image background

Invite colleagues to collaborate on security questionnaires

Invite colleagues to collaborate on security questionnaires
Toby Roger
October 9, 2024
Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
UpGuard logo
Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
Abstract image background

Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF

Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
Toby Roger
September 11, 2024
Send security questionnaires to vendors using the API
UpGuard logo
Send security questionnaires to vendors using the API
Abstract image background

Send security questionnaires to vendors using the API

Send security questionnaires to vendors using the API
Toby Roger
August 28, 2024
Expanded categorization of attack surface risks
UpGuard logo
Expanded categorization of attack surface risks
Abstract image background

Expanded categorization of attack surface risks

Expanded categorization of attack surface risks
Toby Roger
August 15, 2024
New SIG 2024 and DPDP Act Questionnaires
UpGuard logo
New SIG 2024 and DPDP Act Questionnaires
Abstract image background

New SIG 2024 and DPDP Act Questionnaires

New SIG 2024 and DPDP Act Questionnaires
Toby Roger
July 31, 2024
New multi-framework security questionnaire
UpGuard logo
New multi-framework security questionnaire
Abstract image background

New multi-framework security questionnaire

New multi-framework security questionnaire
Toby Roger
July 17, 2024
View all release notes
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating
UpGuard logo
UpGuard is a complete third-party risk and attack surface management platform.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Contact sales
Free trial
Products
Tools
Company
Insights
Products
Compare
Solutions
Company
Insights
© UpGuard, Inc.
Research GuidelinesPlatform Terms & ConditionsWebsite Terms & ConditionsPrivacyCookies