The DevSecOps section allows you to download a CSV file containing all the information present in the table. This table keeps execution records of our DevSecOps. Thanks to this ARM's feature, you can export and use the data offline. Your opinion is very important to us. Please write us at help@fluidattacks.com and tell us what you think about this feature. We also invite you not to miss any announcements we make weekly on our News channel.

Treatment Alert is a notification that will let users know about the Accepted Treatment when they request it and it is accepted. This is a helpful way to keep everyone in the loop on what's going on with accepted treatments.

We are delighted to improve the ARM notifications every day for you. We invite you not to miss any of these updates by subscribing to our News channel. 

New filters are now available to customize your Technical Report, filtering by: Status, Closing Date, Pending Reattack and Treatment. Thanks to these new options, you can generate reports with flexibility and speed, selecting the data you want to generate. If you want to know more about how to create reports, we invite you to click here.

Your opinion is important to us. Let us know what you think about these new filters. Remember that you can write to us at help@fluidattacks.com or in this post.

User managers in the ARM can invite and manage group users, their responsibilities, and roles in the Stakeholders section. If you want to know more about this section, click here.

We would like to know about your experience with this section of the ARM: Has it been useful? You can leave us a comment here or send it to help@fluidattacks.com.

We are excited to announce the security standards we apply in Fluid Attacks. The BSA Framework for Secure Software (BFAFSS) offers an outcome-focused, standards-based risk management tool to help stakeholders in the software industry. You can find this and other standards we are applying at Fluid Attacks in the Compliance section of our Documentation.

Write to us at help@fluidattacks.com if you have any comments or questions about this standard.

Do you know what our Vulnerabilities being re-attacked metric is about? This shows us how many vulnerabilities will  reattacked by Fluid Attacks. Remember that this metric is found in organizations, groups, and portfolios on the ARM.

Let us know if you find this metric useful. Comment here or email us at help@fluidattacks.com telling us about your experience and subscribe to our News channel so that you don’t miss any of our announcements.

Remember that vulnerability you accepted temporarily? Well, you should. You can now get emails or SMS messages seven days and one day before the temporary acceptance period of a vulnerability expires. Thanks to this notification, you can reexamine the security issue in advance and define its new treatment. Just enable the Treatment expiration alert in the Notification matrix, accessible through the User information drop-down menu.

Do you find this notification useful? Comment on this post or send us an email to help@fluidattacks.com. Don't forget to subscribe to our News channel so that you don’t miss any of our announcements.

Global credentials is now available on our ARM! Thanks to this feature, you can store the credentials you have created in the different groups of the same organization and reuse them in all of them. Global credentials allows you to save time and reduce errors. You can view, add, edit and remove credentials after opening the User information drop-down menu and clicking on Credentials. For more information, follow this link.

Your opinion is very important to us. Please write us at help@fluidattacks.com and tell us what you think about this feature. We also invite you not to miss any announcements we make weekly on our News channel.

Accepted vulnerabilities by severity shows you the proportion of accepted and open vulnerabilities by severity level (critical, high, medium and low). Thanks to this chart, you will have an idea of the severity of impacts that you are willing to absorb.

You can find this chart in the Analytics sections for your organizations, groups and portfolios. Remember that you can leave us your comments here or send them to help@fluidattacks.com.

We now assess that you comply with security requirements that prevent the OWASP Privacy Risks. This OWASP standard provides a list of privacy risks in web applications and related countermeasures, covering technological and organizational aspects that focus on real-life scenarios.

You can find this and other standards we are applying at Fluid Attacks in the Compliance section of our Documentation. The version used in this section is OWASP Top 10 Privacy Risks version 2.0, 2021.