Release Notes

• Internal Documents – Drag and drop to bulk upload documents.
• Vendors – Monitor vendors flagged during assessments and use Continuous Monitoring subscriptions while adding vendors.

• Severe and Material Findings Bitsight filter set. Available for SPM, CM, and Insurance findings.
• Vulnerability Evidence – Available in Third Party Assets in the Security Performance Management application and in Critical Assets in the Continuous Monitoring application.
• Portfolio Dashboard – Critical Assets Exposure card.

• New TLS/SSL Certificate Finding Fields – Added All Sources and My Company's Sources fields.
• Security Ratings Timeline – Rating increases are included in the timeline.
• TMH/VRM User Roles – Vulnerability Response Outreach user role, which allows you to send questionnaires from the Continuous Monitoring application.

• Trust Score Adjustment – Increase or decrease the calculated Trust Score based on relevant information.
• Instant Insights – Generative AI to extract a document's contents, analyze, and then summarize the contents into deep and actionable insights.

• Operational Technology Exposure Intelligence – Highlights operational technology (OT) risk and provides global visibility of exposed industrial control system (ICS) devices across supported protocols.
• TLS/SSL Certificates & TLS/SSL Configuration Findings – Details on TLS/SSL Certificates and TLS/SSL Configurations findings.

• Risk Remediation – Use the Risk Remediation forecast to create a forecast using your RRPs.
• Findings – Most findings are no longer sampled. Companies with over 10 million findings still have sampled findings.

• Assessments – Assessments are now available in the Security Performance Management application.
• Vulnerability Detection – Incorporated Exploit Prediction Scoring System (EPSS), which estimates the likelihood that a software will be exploited. The higher the percentage the more likely it is to be exploited.
• TMH App: Documents – Share documents (share all & selective sharing).

• Artifacts – 'NATF Energy Sector Supply Chain Risk' added to questionnaires.
• Assessments Overview – A comprehensive view of your assessments, providing insights into the top 5 results for upcoming, ongoing, and completed assessments.

• Subsidiary Improvement – Patching Cadence risk vector added to Subsidiary Improvement plan.
• Risk Analytics – New color them option added to the Risk Analytics page.

• class="app-cm"Continuous Monitoring Findings – Filter by multiple assets.
  • Multi-select the assets you want and care about from the Assets page [Infrastructure ➔ Assets] and open them in the Findings page as filters.
  • Use filter sets to save your selection from the Findings page, so you can open this filter with the same assets whenever you return to the Findings page.
• Filter Sets – You can now create filter sets for multiple assets in the CM and SPM apps.

Emerging Security Events card:

• The card stays hidden: Now, when you click “hide” on a card, it stays hidden even if you leave the page and come back.
• Save space: Hidden cards mean more room for other important info on the dashboard.
• New events still visible: Don’t worry, you won’t miss new threats. The hidden card shows the number of new events, and they’ll still automatically expand for everyone when new info appears (like a new vulnerability).

Infrastructure data quality & collection improvements:

• Increased asset discovery capability.
• Improved data quality.

Knowledge Base:

• Leave comments at the bottom of an article to provide feedback on our knowledge base content.
• Get a count of matches (grouped by category) when doing a text search.
• Small changes to the visual design.

• Benchmark Groups – Group companies for benchmarking. They have the same metrics and are interchangeable with peer groups.
• Risk Analytics – Filter by tiers or folders.

Filter Sets – Bitsight filter sets.

• Bad and warn findings
• Findings that impact the grade
• New findings

• Assets – Directly tag individual assets from the Assets page.
• Findings – The Impacts Risk Vector Grade field indicates whether or not a finding currently impacts a risk vector grade. Filter findings that currently impact or no longer impact risk vector grades.

• Vulnerability Catalog – No longer available. Users should now use the Vulnerability Catalog report.
• Infrastructure: Attribution & Assets – No longer available. All data is available on the Infrastructure page.
• Infrastructure – Released.
• Findings – Use rolled up ID as a finding identifier.

• Ratings Tree – Filtering within the SPM app.
• Exposed Credential Findings – The Domains field no longer include expired domains. It includes only the currently active and owned domains.

• “TPRM” renamed to “Continuous Monitoring.”
• Design updates:
  • App switcher moved to the top of the menu on the left.
  • Expand/collapse the menu using the toggle on the bottom left.

• Power BI – SPM updates, including:
  • Findings columns added to help you visualize and manage findings.
  • Bug fixes:
    • attributed.guid and attributed.name now refer to the right entity in a company’s tree.
    • Character encoding now work for French characters.
    • Column name display.
• Ratings Tree – See subscription type.

• Financial Quantification – Added Deductible and Coverage Limit lines to the Exceedance Probability graph, providing context to your insurance deductible and coverage through the lens of financial risk.
• Ratings Tree – Grab and scroll to navigate the Ratings Tree.

• Vulnerability Detection Report – Get an extensive summary of your organization’s external attack surface.
• Vulnerability Detection Evidence Report – See evidence for the vulnerabilities detected in your organization.

• Classic Bitsight app deprecated for all except Cyber Insurance users.
• Company Relative Risk Report – Review a company's relative risk and past Bitsight Security Rating performance.

Cloud Infrastructure for AWS

• Delete connection.
• Resume adding account.