Release notes — October 2025
Released: October 1, 2025
Released: October 1, 2025
What was new
🎯 Third-Party Apps Security
Public API
Integrate elba's security data into your own tools and workflows. Our new public REST API provides programmatic access to apps, users, issues, and security metrics. Build custom dashboards, automate reporting, and connect elba to your existing security stack.
CVE monitoring and notifications
Automatically detect critical vulnerabilities in your third-party apps. New CVE playbooks monitor for Common Vulnerabilities and Exposures, filter by CVSS severity score, and send instant notifications to admins with affected app counts and direct links to filtered inventory views.
Data-breach detection
Get alerted immediately when apps in your inventory experience data breaches. Automated playbooks track breach databases, send notifications to admins, and help you assess impact across your organization.
🎓 Phishing & Training
AI scenario builder
Create custom phishing scenarios from a plain-language prompt. Generated content supported variables, multiple languages, editing, and live preview.
Group training distribution
Send training to entire user groups in addition to individual users. Streamline training assignments by targeting departments, teams, or custom groups instead of selecting users one by one.
Training reminders
Automatically send reminders to users with pending trainings. Keep your security awareness program on track with configurable reminder notifications.
🤖 Playbooks & Automation
Third-party app playbook templates
New pre-built playbook templates for CVE monitoring and data breach detection. Templates include GitHub-specific configurations and can be customized for your organization's needs. Get started with automated security monitoring in seconds.
Application details panel
The new details panel brought permissions, users, data-access patterns, security scores, and issue history into one shareable view.
Improvements
User interface
- Updated trust score display with confidence badges replacing risk scores
- Improved sheet tables with 20 items per page for better scanning
- Enhanced scroll areas and navigation throughout the platform
- Redesigned cards and layouts across admin sections
Identity and Access
- New access review sources tab displays all identity and access integrations in one place
- Default capability settings for access review sources
- Identity gaps now displayed as sub-table within access review section
Performance
- Training, policy, issue, and group tables load faster
- Improved pagination and bulk actions
- Faster inventory loading
Fixes
- Dates and times now display correctly across time zones
- Resolved Microsoft user sync filtering to exclude guest users
- Corrected training reminder notifications to include proper training names
- Playbook configuration now remains available when a source connection has an error
- Improved error handling with custom error pages
📚 Learn More
Explore our help center:
- Third-Party Apps Security
- Phishing Simulations
- Security Playbooks
- Public API Documentation
- Browse all articles
Questions? Contact [email protected].