Release notes

Support for subsidiaries in your vendor's Risk Profile

Abi Tyas Tunggal
Abi Tyas Tunggal
released Jul 21, 2021
Release notes imageSupport for subsidiaries in your vendor's Risk Profile

We've added support for viewing a vendor and its subsidiaries in its Risk Profile.

This view lets you see all the risks present across the vendor and its subsidiaries. Each of the identified risks has a severity, name, risk type, category, and a number of organizations impacted. By default, findings are sorted by severity, with critical severity items at the top.

You can drill down into each identified risk to see the impacted organizations and their associated domains. However, you will need to be monitoring the subsidiary as a vendor to request remediation or to waive the risk. You can do this by clicking Monitor vendor.

Additional SSL-based checks

We've added support for three new SSL-based checks:

  1. Untrusted SSL certificate (informational severity): The certificate presented by this domain was not issued by a trusted certificate authority and therefore cannot be verified by browsers.
  2. SSL certificate chain missing from server response (medium severity): There is an invalid or missing intermediate certificate. This can cause some browsers to break the padlock. An intermediate/chain certificate may need to be installed to link it to a trusted root certificate.
  3. SSL expiration period longer than 398 days (medium severity): Certificates issued on or after September 1, 2020 must not have a validity period greater than 398 days. The certificate will need to be reissued with a maximum validity of 397 days.

Other fixes and improvements

  • Creating vendors with no web presence is now available for all customers with vendors
  • Added notification for news articles in Incidents & News
  • Increased upload limit from 10MB to 50MB
  • Added highlight for news articles tagged as Advisory in Incidents & News
  • Improved handling of WAFs and CAPTCHA for our automated scanning engine
  • Fixed issue causing inactive subdomains to not be scanned in some situations
  • Check icon
  • Check icon
  • Check icon
  • Check icon
  • Check icon
Book a free demo
View all release notes

UpGuard Release Notes

Learn about new features, changes, and improvements to UpGuard.
Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
UpGuard logo
Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
Abstract image background

Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF

Automatically answer questionnaires using a SOC 2 report, information security policy, or any other PDF
Toby Roger
September 11, 2024
Send security questionnaires to vendors using the API
UpGuard logo
Send security questionnaires to vendors using the API
Abstract image background

Send security questionnaires to vendors using the API

Send security questionnaires to vendors using the API
Toby Roger
August 28, 2024
Expanded categorization of attack surface risks
UpGuard logo
Expanded categorization of attack surface risks
Abstract image background

Expanded categorization of attack surface risks

Expanded categorization of attack surface risks
Toby Roger
August 15, 2024
New SIG 2024 and DPDP Act Questionnaires
UpGuard logo
New SIG 2024 and DPDP Act Questionnaires
Abstract image background

New SIG 2024 and DPDP Act Questionnaires

New SIG 2024 and DPDP Act Questionnaires
Toby Roger
July 31, 2024
New multi-framework security questionnaire
UpGuard logo
New multi-framework security questionnaire
Abstract image background

New multi-framework security questionnaire

New multi-framework security questionnaire
Toby Roger
July 17, 2024
Customize notifications for critical vendor incidents and news
UpGuard logo
Customize notifications for critical vendor incidents and news
Abstract image background

Customize notifications for critical vendor incidents and news

Customize notifications for critical vendor incidents and news
Toby Roger
July 3, 2024
View all release notes
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating
UpGuard logo
UpGuard is a complete third-party risk and attack surface management platform.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Contact sales
Free trial
Products
Tools
Company
Insights
Products
Compare
Solutions
Company
Insights
© UpGuard, Inc.
Research GuidelinesPlatform Terms & ConditionsWebsite Terms & ConditionsPrivacyCookies