ImmuniWeb has unveiled a major update to its ImmuniWeb AI Platform, based on ongoing research as well as valuable feedback from customers and partners in over 50 countries.
This cumulative Q4 update builds on the Q3 update announced in early October. Most Q4 improvements focus on security testing for AI-specific vulnerabilities and weaknesses in web and mobile applications, as well as enhanced testing and reporting for regulatory and compliance purposes.
The update also combines detection of Post-Quantum Cryptography (PQC) issues and weaknesses, improved testing scalability and speed, greater user autonomy through enhanced logging and more granular role management, and expanded use of Big Data by the Internet Security Center to enable more reliable detection of security and compliance issues.
Here are some of the key improvements:
ImmuniWeb AI Platform updates
- Possibility to store your data in a country of your residence (may incur extra cost)
- Instant online purchase of any product is now possible with a secure payment
- Over 10 new or enhanced integrations including a new integration with Okta
ImmuniWeb Discovery
- Introduction of new granular packages
- Detection of copyright infringement incidents
- Detection of exposed AI and AI-related infrastructure (network and cloud)
- Detection of new types of cloud misconfigurations and support of new cloud providers
- Better detection of shadow assets with 100M+ database of the Internet Security Center
- Enriched and more detailed information about Dark Web leaks and other incidents
- Historic intelligence on stolen passwords and other credentials
- Enhanced fingerprinting of network software
- Better detection of network vulnerabilities
- Improved asset history and change log
- Revised risk scoring in all tabs
ImmuniWeb On-Demand and MobileSuite
- Improved TLTP testing for EU DORA requirements and compliance
- Advanced detection of OWASP Top 10 for LLMs vulnerabilities in AI-powered apps
- Introduction of Executive Guide for each penetration testing report
- Introduction of SSVCv2 scoring for vulnerabilities
- Introduction of EPSSv4 scoring for vulnerabilities
ImmuniWeb Neuron
- Testing of Post-Quantum Cryptography (PQC) issues (in the TLS stack)
- Detection of hundreds of new CVE-IDs including React2Shell and many others
- New security tests and checks including detection of AI-specific vulnerabilities
- Better detection of vulnerabilities in non-web systems that interact with web application
- Actionable risk scoring for security warnings and misconfigurations types of findings
- Additional scan statistics, new graphics, and more granular scan history
- Additional validation of scan authentication prior to start of a scan
- Support of multiple user scripts and macros for authentication
- New authentication methods for authenticated scanning
- Improved configuration of scan idle time
- New Compliance section of the report
ImmuniWeb Neuron Mobile
- Testing of Post-Quantum Cryptography (PQC) issues (in the TLS stack)
- Introduction of new section Software Composition Analysis (SCA)
- Introduction of new metric Open-Source Security Score (OSS)
- Support of the latest OS versions of iOS and Android
- Unlimited scans now can run in parallel
- Better logging of scans and scan events
ImmuniWeb Continuous
- Launch of a revamped product at ultra-competitive pricing
- Built-in possibility to test AI-powered apps for OWASP Top 10 for LLMs
- Possibility to launch 24/7 automated testing, expert testing, or a mixture of both
- Brand-new dashboards with numerous new options and novel functionalities
- Improved Executive View and Compliance View dashboards
- Real-time patch verification for any security finding
- Instant project start is now possible
ImmuniWeb Community Edition
- Introduction of the Internet Security Center (more details next week)
- Creation of a Dark Web and Threat Exposure Test replacing two separate tests
- Larger discounts for 3, 6 and 12-month subscriptions for premium accounts
- Unification of all APIs for integration of scans in your CI/CD pipeline
- Significantly improved detection of phishing and squatting
- Introduction of Table of Contents section for all reports
- Improved design of all PDF reports
“The cyber threat landscape is rapidly growing both in terms of sophistication and size, creating unprecedented challenges for already exhausted cybersecurity teams and professionals. In the meantime, the regulatory landscape also becomes increasingly more complicated and uncertain. Many existing laws and regulations will probably be amended both in the EU and US within the next 12 months, while new legislation is already looming on the horizon, making cybersecurity compliance a tough task,” said Dr. Ilia Kolochenko, Chief Architect & CEO at ImmuniWeb.
“Being mindful of these challenges, we are delighted to present major updates of our award-winning ImmuniWeb AI Platform to even better accommodate our customers and partners. The updates are specifically designed to streamline regulatory compliance, support timely detection and remediation of AI-related vulnerabilities, address PQC risks and threats, and stay ahead of the countless traditional attacks and vulnerabilities,” Kolochenko concluded.