- New: IriusRisk Vulnerability Tracker - ThreadFix integration
- New: FedRAMP libraries now available
- New: Expanded default library with new SAML components
- More Google Cloud components and security standards
- Scheduled update for SaaS instances
Get the release notes here
New: IriusRisk Vulnerability Tracker - ThreadFix integration
IriusRisk is able to upload all of a product’s countermeasures to ThreadFix as vulnerabilities – as if it were a scanner. These scans act as a single point-in-time capture of all vulnerabilities that exist in the application’s threat model. ThreadFix consolidates and correlates these findings with those from other DAST and SAST scanners by mapping vulnerabilities to CWEs. Find out more in our support article
New: FedRAMP libraries now available
We now have FedRAMP components available to assist security and engineering teams in checking their FedRAMP compliance. Based on FedRAMP’s three impact levels, these new components are a valuable and welcome addition to Cloud Service Offerings who provide solutions to the US federal government. Get the 101 on FedRAMP and see it in action within IriusRisk.
New: Expanded default library with new SAML components
Discover critical Single Sign-On vulnerabilities and risk patterns for your IriusRisk threat models with our new SAML components: SAML Service Provider and SAML Identity Provider. As always, IriusRisk will automatically generate the appropriate countermeasures to mitigate these.
- Google Cloud Firebase
- Google Cloud Load Balancing
- Google Cloud MySQL
- CIS Google Cloud Platform Foundation Benchmark
Notice: Scheduled update for SaaS instances
On-premise customers can now download and update their instance.
SaaS customers will receive their update on Monday 5th April 2021 from 8am to 10am CEST, 2am to 4am ET, 11pm to 1am PT.
Bringing you the latest on all things threat modeling and architectural security.