Sqreen changelog Sqreen changelog www.sqreen.io/

Sqreen API section

New

You can now get your API key directly from your Sqreen dashboard. Documentation is available here. Feel free to ping us if you need anything!

New Developer plan (Free)

New

We just introduced our free developer plan which allows free use of our APIs. You just need to create a new "API Sandbox" app, and you'll be all set!

Protection mode behavior

New

You can now choose the behavior of your choice when your app is under attack (protection mode).

Choices are:

  • HTTP Error 401 (unauthorized)
  • HTTP Error 403 (forbidden)
  • HTTP Error 404 (not found)
  • A custom URL (redirect)

Detect users attacking even earlier

Improvement

Sqreen now supports OWASP ModSecurity Core Rule Set (CRS). Sqreen will not block attacks based on patterns, which would result in false-positives, and would block legitimate traffic. This information is used to detect user accounts performing attacks, even when the requests sent are harmless for the application.

Detecting errors generated by users

New

Sqreen now correlates errors generated within Applications with user accounts.

You can know whenever a user is starting to stress your web application and triggers security errors, so you can react before a breach happens.

Security headers support

New

Modern web browsers offer a lot of security features aimed at protecting your users from a wide variety of threats.

Here is a list of the most important security HTTP headers.

Sqreen now allows to simply enable them to protect your app from a wide variety of attacks in just a few clicks.

Detecting compromised user accounts

Improvement

When attackers manage to steal user accounts through account takeover attacks, Sqreen automatically provides the list of compromised accounts, as well as mitigation details.

Detect user accounts performing unusual errors

Improvement

Sqreen now identifies user accounts triggering unusual rates of errors in the applications, and which have a security activity. Sqreen alerts you whenever security activity is detected from a logged in user.

Detect account farming attacks (peaks of Account creation)

Improvement

Sqreen nows detects peaks of account creation when attackers create dozen of user accounts automatically. This attack is usually performed by fraudsters.

User Context: Automated Vs. Advanced

Improvement

You can now choose the method of your choice to monitor suspicious user activity:

  • Automated: no modification is required in your code. This method is compatible with main authentication frameworks.
  • Advanced: you can integrate our 2-line SDK to monitor custom authentication or frameworks that are not supported.
  • Off: Disable user monitoring.

Refer to our documentation for more info.

No published changelogs yet.

Surely Sqreen will start publishing changelogs very soon.

Check out our other public changelogs: Buffer, Mention, Respond by Buffer, JSFiddle, Olark, Droplr, Piwik Pro, Prott, Ustream, ViralSweep, StartupThreads, Userlike, Unixstickers, Survicate, Envoy, Gmelius, CodeTree