Would you find it helpful to know the days you should invest in remediating all open vulnerabilities? We now have this information in the Analytics section of our ARM. Through a new calculation, we estimate the total number of days it would take your team to remediate all the security vulnerabilities currently open in your systems.

You can find Days until zero exposure in Org, Group, and Portfolio. Let us know what you think about the Analytics section of our ARM by leaving a comment on the post or writing us at help@fluidattacks.com.

How about seeing the Analytics comparison between different Groups that make up your organization? It is possible through the Portfolios tab. Here you can see the comparison of graphs and metrics between the groups. To add those, you have to go to Org-> Group -> Scope -> Portfolio; there, you can add and remove the tags that classify each group that will be part of a specific Portfolio.

If you have any questions about this section or any other ARM section, you can use our support channels; our team of experts is ready to help you with any questions. We invite you not to miss our weekly announcements in our Chanel News.

The SWIFT Customer Security Controls Framework (CSCF) establishes a set of mandatory and advisory security controls for the operating environment of SWIFT users. SWIFT provides the global messaging system that financial organizations use to transmit information and instructions securely.

The version used in this standard is CSCF v2021. If you want to know more about this standard or others we are applying to, we invite you to visit the Compliance section of our documentation.

The compliance section of our ARM is divided into two subsections: Overview and Standards. In Standards, you can view compliance information at the group level. You can select the group you can access by clicking on the drop-down menu. You can see the standards and their requirements that are not being complied with.

Thanks to this information, you will be able to know more clearly at the group level which standards and requirements are less compliant. If you want to know more about the standards we are applying to, we invite you to visit the Compliance section of our documentation. 

In the group view, you can now see the status of the groups and their total number of open vulnerability types. Thanks to this improvement, you will see summarized information of great importance for each group.

If you want to know more, you can enter here. We invite you to leave us your opinion by writing us in the post or sending us an email at help@fluidattacks.com

If you want to delete your ARM account, you can do it through the drop-down menu by clicking on the Delete Account action. When you do this, you will receive a notification for confirmation of this action, where it will be deleted successfully by clicking on Confirm Deletion.

Remember that you can see what our notification matrix is all about here. We invite you not to miss any weekly news published on our News channel.

We are excited to announce our new feature called code. Here you can visualize the portion of vulnerable code found in each Static Application Security Testing (SAST) type.

Thanks to this feature, you can visualize the portion of the vulnerable code, having a clear reference where it was directly reported. This feature applies to our Machine and Squad plans. If you want to know more about this new tab, click here.

The weekly trend metric will show you how your organization has been trending in complying with standards between the last and the current week.

How many vulnerabilities have been given top priority? How many, a low one? That’s information that could be useful for your remediation needs and goals. The Vulnerabilities by level chart on the ARM can help you answer those questions. Thanks to it, you can find the number of vulnerabilities of the different priority levels your organization internally assigned to them.

This chart is found in the organizations, groups, and portfolios’ respective Analytics sections. If you have a question or suggestion, do not hesitate to contact us by leaving your comments in this post or sending them to help@fluidattacks.com.

We are pleased to announce the improvements we implemented in the filters to apply when generating a technical report. With these new options, you can customize how you want your report to be generated and display the most interesting information for you.

If you want to know more about how to create reports, we invite you to click here. Your opinion is important to us. Let us know what you think about these new filters. Remember that you can write to us at help@fluidattacks.com or in this post.