Who is this for?
We have all different types of users, from solo business owners at home to CTOs in multi-national corporations. We aim to make cybersecurity more relevant and easier to digest than it has ever been. We feel that every business, small or large, will benefit from our services.
What software do you track?
We track over 32,000 software titles, from router firmware to operating systems. If there are CVEs for the software, we track them.
I have a lot of software, can I upload my list in bulk?
Yes you can. You can bulk upload a CSV file of the software you want to track. Simply upload the CSV with two fields: Vendor,Product (eg. Apple,iOS). In your Dashboard you can drag and drop your CSV to upload it.
How do you help my company comply with PCI DSS requirement 6.1?
PCI DSS Requirement 6.1 requires your company to "establish a process to identify vulnerabilities using reputable outside sources and assign a risk ranking to newly discovered vulnerabilities."
SecAlerts uses multiple trusted sources, including the US-Government's National Vulnerability Database (NVD), to match vulnerabilities with your software, as well as providing NVD's "risk ranking" i.e. low, moderate, high, critical, for each vulnerability. You can decide to implement the alerts into Slack channels, staff emails, or ticketing systems. If you need help integrating into your systems, just get in touch.
How often can I get alerts?
You can choose how often you receive the alerts: hourly, daily, weekly, biweekly or monthly. For the Solo plan, the only option is weekly.
Do you provide remedy information?
It's hard to evaluate vulnerabilities and provide remedy information, however we find that a lot of the time the latest software update includes fixes for vulnerabilities. This is why we notify you if there is a new update available for your software.
Do you cover Zero-Days?
The term "zero-day" typically means a vulnerability that is unknown to the public or vendor or without a patch. We match your software with the Zero Day Initiative (ZDI) advisory, which often publishes zero-days a vendor has not fixed. We also search for the term "zero-day" being used in news articles.
Is my information private?
Do you offer integration options?
We currently offer Slack integration but custom integrations are available. Please get in touch to let us know what integration you need.
What is the response time for your support?
We aim to get back to you within a few hours, if not straight away. On our Enterprise plan, support will be guaranteed to a 24 hour SLA.