Alerts are the primary method for Vectrix users to become aware of security issues detected by a module.
Alerts are sent to Slack with relevant information of the detected issue, and in some cases, come with a built-in way to fix the issue in just a click.
Whenever a change has been detected since the module's previous scan. To see the scan frequency of a specific module, navigate to its deployment configuration and locate the drop-down menu title Scan Frequency. Any changes since the last scan detected by the next scan prompt an alert.
See the 'Alerts' section of each module for context on the alerts you receive.
See the 'Alerts' section of each module for actions to take on the alerts you receive.
When alerts are sent, they include a recommended Investigate timeframe and Severity of impact.
How quickly does this need to be actioned?
As Time Permits
worth following up in the next week or so
investigate ASAP but don't drop everything to do so
drop everything, take action now! A timely response is essential
Just how bad is it? Is this something likely to cause a breach notification scenario?
something to be aware of but likely minimal impact
there is value reviewing to ensure impact is minor
indicates an uncomfortable amount of risk, something that should be addressed as it can cause an adverse impact
indicates an unacceptable amount of risk. Potential to "end up as a headline" type impact