Release notes

Improved vulnerability detection and management

Abi Tyas Tunggal
Abi Tyas Tunggal
released Sep 16, 2020
Release notes imageImproved vulnerability detection and management

We’ve expanded our vulnerability detection and management capabilities by differentiating between verified and unverified vulnerabilities.

As UpGuard scans from outside companies’ networks, there are some vulnerabilities we can confirm (verified vulnerabilities), but others we only know may exist (unverified vulnerabilities). When verified vulnerabilities are detected, you’ll also be able to see them on your, and your vendors’, risk profiles and use them in our remediation and risk waiver workflows.

In addition, you now can ignore unverified vulnerabilities to remove them from the vulnerabilities list. This is different from a risk waiver because you are signaling that the risk doesn’t exist, as opposed to a risk waiver where you are accepting the risk.

To learn how to use our vulnerabilities feature, see our articles on UpGuard BreachSight vulnerabilities and UpGuard Vendor Risk vulnerabilities.

Audit log

Administrators can now see an audit log of important events in the UpGuard platform and who actioned them.

This will allow you to see, for example, who has logged in, who has had their permissions changed, whether an UpGuard employee has viewed your account, when a questionnaire has been sent, when a risk assessment has been published, and much, much more.

Learn about the events tracked through our audit log.

Six new questionnaires

As part of our continued investment in the platform, we’re releasing six new questionnaires:

  • COBIT 5 Security Standard Questionnaire: Assesses compliance against the Control Objectives for Information and Related Technologies Framework created by ISACA.
  • ISA 62443-2-1:2009 Security Standard Questionnaire: Assesses compliance against the ISA 62443-2-1:2009 standard for industrial automation and control systems.
  • ISA 62443-3-3:2013 Security Standard Questionnaire: Assesses compliance against technical control system requirements associated with the seven foundational requirements (FRs) described in IEC 62443-1-1.
  • GDPR Security Standard Questionnaire: Assesses compliance against the personal information disclosure requirements outlined in the European Union's General Data Protection Regulation (GPDR).
  • CIS Controls 7.1 Security Standard Questionnaire: Assesses compliance against the best practice guidelines for cybersecurity outlined in 20 CIS Controls.
  • NIST SP 800-53 Rev. 4 Security Standard Questionnaire: Assesses compliance against the security and privacy controls required for all U.S. federal information systems except those related to national security.

Other fixes and improvements

  • We’ve broken up Documents & Contacts into two separate pages (Documents and Contacts)
  • Documents now includes all file-based evidence for a vendor and is categorized by source: general documents, additional evidence, or questionnaire responses
  • Documents added as additional evidence are now available in the vendor’s Documents & Contacts
  • Prioritized typosquatting results to first show homogylphs with only one substitute character and where characters look similar to the original domain.
  • UpGuard analysts can now redact a sensitive URL on a data leaks finding
  • Improved the readability of cookie-based automated scanning results
  • Added parked domain detection for registrar CSC
  • Fixed an issue where users on Chromebooks couldn’t upload files
  • Check icon
  • Check icon
  • Check icon
  • Check icon
  • Check icon
Book a free demo
View all release notes

UpGuard Release Notes

Learn about new features, changes, and improvements to UpGuard.
New ServiceNow integration
UpGuard logo
New ServiceNow integration
Abstract image background

New ServiceNow integration

New ServiceNow integration
Toby Roger
April 29, 2024
Answer questionnaires faster with import improvements
UpGuard logo
Answer questionnaires faster with import improvements
Abstract image background

Answer questionnaires faster with import improvements

Answer questionnaires faster with import improvements
Annie Luu
April 9, 2024
Introducing the Vendor Risk digest
UpGuard logo
Introducing the Vendor Risk digest
Abstract image background

Introducing the Vendor Risk digest

Introducing the Vendor Risk digest
Annie Luu
March 27, 2024
Import and answer security questionnaires in minutes – for free
UpGuard logo
Import and answer security questionnaires in minutes – for free
Abstract image background

Import and answer security questionnaires in minutes – for free

Import and answer security questionnaires in minutes – for free
Annie Luu
March 13, 2024
Ability to conduct concurrent risk assessments for a single vendor
UpGuard logo
Ability to conduct concurrent risk assessments for a single vendor
Abstract image background

Ability to conduct concurrent risk assessments for a single vendor

Ability to conduct concurrent risk assessments for a single vendor
Annie Luu
February 28, 2024
What’s new in UpGuard | February 2024
UpGuard logo
What’s new in UpGuard | February 2024
Abstract image background

What’s new in UpGuard | February 2024

What’s new in UpGuard | February 2024
UpGuard Team
February 1, 2024
View all release notes
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating
UpGuard logo
UpGuard is a complete third-party risk and attack surface management platform.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Contact sales
Free trial
Products
Tools
Company
Insights
Products
Compare
Solutions
Company
Insights
© UpGuard, Inc.
Research GuidelinesPlatform Terms & ConditionsWebsite Terms & ConditionsPrivacyCookies