Release Notes - Sep 2025

Release Notes

• Release Notes - Oct 2025

• Release Notes - Sep 2025

• Release Notes - Aug 2025

• Release Notes - July 2025

• Release Notes - June 2025

• Release Notes - May 2025

• Release Notes - April 2025

• Release Notes - March 2025

• Release Notes - February 2025

• Release Notes - January 2025

Release v4.1.114

Sep22, 2025

1. Integration with IronClad CLM

SAFE now seamlessly integrates with IronClad CLM (Contract Lifecycle Management) to auto-discover vendors, fetch contracts for analysis, and accelerate third-party onboarding with full contract visibility. Refer to the Integration Guide for more details.

2. Enhanced Tenable VM integration to pull CA findings

Tenable VM integration with SAFE has been enhanced to pull Configuration Assessment (CA) findings in addition to vulnerabilities, providing comprehensive visibility into both vulnerabilities and misconfigurations.

3. Integration with AWS Security Hub (Early Access)

SAFE integration with AWS Security Hub allows you to onboard AWS accounts and import assets and security misconfigurations into SAFE for a unified risk view. Refer to the Integration Guide for more information.

4. Third-Party Status Tracking & Reassessment Management (Early Access)

We’ve added rejection reasons, full status history, and configurable review frequencies per tier/vendor. A new dashboard widget tracks reassessment cycles to ensure timely action.

Release v4.1.113

Sep08, 2025

1. Enhanced Integrations Management

We’ve improved the integration management experience in SAFE with powerful new capabilities:

• Configure multiple accounts (instances) of the same integration directly from the UI (e.g., add two CrowdStrike instances).

• View all configured integrations in Grid or List view with asset and findings counts.

• Use the new “+ Add” button to easily search and configure new integrations.

2. Integration with IronClad CLM - Early Access

SAFE now seamlessly integrates with IronClad CLM (Contract Lifecycle Management) to auto-discover vendors, fetch contracts for analysis, and accelerate third-party onboarding with full contract visibility. Refer to the Integration Guide for more details.

3. Enhanced Questionnaire Experience

Answering questionnaires in SAFE is now faster with an expand/collapse all option to easily switch between reading and answering. A new single-select view shows all options on screen (no dropdowns), reducing clicks and making assessments quicker.

4. Third-party Addition Without Domains

SAFE TPRM now allows adding third parties without a domain. These vendors can still be tracked and assessed via questionnaires, evidence, and contracts, while risk-analysis features (Outside-In, SAFE Score, Digital Footprint, etc.) remain disabled until a domain is provided.

5. Automatic Cleanup of Outdated Outside-In Assets & Findings

SAFE TPRM now auto-deprecates outdated digital assets and findings for cleaner, more accurate assessments. Assets inactive for 30 days, removed IPs, and outdated domains are cleared automatically, while resolved findings are marked deprecated.

6. Bug Fix: Negative ALE in What-If Analysis

Fixed an issue where certain control maturity changes could show negative ALE due to Monte Carlo simulation ordering. ALE and aggregated likelihood values are now stable and correctly reflect expected risk changes.

7. Threat Intel Updates

The SAFE Threat Intel team has released the following new Threat Actors:

• Crypto24 Ransomware

• AnonSec

• TWISTED SPIDER

• ShinyHunters

• Traveling Spider

• Viking Spider

• RedEcho

• TAG-132

• BlackLock Ransomware Group

• Indrik Spider

• Mallard Spider

• Sprite Spider