We use cookies to give you the best experience on our website. You can choose which cookies you want to allow below. You can find more details in our privacy policy.
Purpose | So that the user's cookie preferences can be taken into account, these are stored in the cookies. |
Data | Accepted or rejected cookie categories |
Originator | Lywand Software GmbH |
Privacy Policy |
Purpose | This web analytics tool allows us to compile user statistics about your website activity and to best tailor our website to your interests. |
Data | anonymized IP address, pseudonymized user identification, date and time of the request, amount of data transferred incl. message as to whether the request was successful, browser used, operating system used, website from which access was made. |
Originator | Google Ireland Limited |
Privacy Policy |
Purpose | Representation of the company's location using Google's map service. |
Data | Date and time of visit, location information, IP address, URL, usage data, search terms, geographic location. |
Originator | Google Ireland Limited |
Privacy Policy |
Purpose | Convenient appointment scheduling via Calendly directly on the website. |
Data | Appointment information, calendar information, information from third-party software providers, payment information, chatbot data, marketing information, log & device data, cookie data, usage data |
Originator | Calendly LLC |
Privacy Policy |
Purpose | This data processing is performed by YouTube to ensure the functionality of the player. |
Data | Device information, IP address, referrer URL, viewed videos |
Originator | Google Ireland Limited |
Privacy Policy |
In this article, we look back on the past year and have summarised the most important things for you: newly developed features, updates on our partner network and technical insights into the security audit platform. Finally, you will find a summary of our management and an outlook for 2024.
Our platform is designed with our partners' needs in mind. We are pleased to look back on key new features of go.lywand.com that have been developed in response to constructive feedback from our partners.
In particular, we would like to highlight our Feature Request Portal, which has been available to our partners since the end of August 2023, allowing them to submit change requests or suggestions for new features at any time.
Multiple clients can be created quickly and easily with the Customer Bulk Upload.
The Management Report can be personalised (company, address and logo).
When creating a new customer, the cost estimate provides a preview of the monthly costs.
Individual device checks can be triggered manually in the Check Insights.
Ignored vulnerabilities are tracked by automatically recording which user ignored a vulnerability and when. Optionally, an internal note can be added to document the reason.
The new Partner Dashboard replaces the previous Customer Overview. After logging in, lywand partners will find information on their current phase or partner level, the total number of targets checked and an overview of their customers.
To make it easier to set up customers, some steps can be skipped when creating customers.
Status information and a simplified uninstall process optimise the handling of endpoints.
The MSI installer provides an additional option for agent distribution.
A grace period can be set for the "missing patch" vulnerability.
The Security Dashboard provides a rating preview, including rating definitions. You can also see at a glance how many measures are required for a particular rating.
In addition to the new layout of the Renovation Plan, the planning and implementation modes have been combined into one page.
The Feature Request Portal allows partners to submit and upvote feature suggestions and improvements.
The connection to Datto's Autotask PSA ticketing system allows measures to be managed and processed directly in Autotask.
Vulnerabilities can now be ignored for all customers.
The presentation of key figures in the Security Dashboard has been improved and expanded.
Auto Healing can automatically remediate up to 80% of internally detected vulnerabilities.
The agent allows the use of authenticated proxies.
During 2023, we reached important milestones in the expansion of our sales channels. In March 2023, we signed CampusLan GmbH as a distributor for the education sector, followed by Infinigate Deutschland GmbH in April 2023 and Infinigate Österreich GmbH in May 2023 - Infinigate is the largest cybersecurity distributor in EMEA. Thanks to the successful cooperation with our distributors, we were able to gain 413 partners by the end of the year. The number of our customers also increased to 2,459.
To share the success stories of our partners and their experiences with our platform, we have launched a series of webinars called 'Success Stories'.
In these webinars, three of our partner companies reported on their daily work with lywand.
The discussion covered important aspects such as introducing lywand to their customers, the practical use of the platform, the added value for their customers and the positioning of lywand in their offer.
In addition to the success stories, partner workshops were held on a regular basis to provide valuable tips and tricks on how to optimise the utilisation of our security audit platform.
These interactive workshops covered a wide range of topics, from in-depth technical insights to sales support.
We participated in many events last year and were delighted to meet many of our partners in person. - There's nothing like face-to-face dialogue. 😊
A total of 15,037 external and 5,867,345 internal audits were performed in 2023. The number of internal audits is significantly higher than the number of external audits, as external audits of the IT infrastructure are generally performed monthly, and internal audits are performed daily, one per endpoint.
The average duration of an external security check was 8.7 hours, while an internal check was only 10 minutes.
Our platform is capable of detecting 139,065 different security vulnerabilities, which are checked as part of the security audit process. In 2023, we were able to identify 1,235,782 vulnerabilities. Since the launch of the Auto Healing feature in December, many partners have activated the feature and 122,016 vulnerabilities have been automatically fixed in just one month - we think that's lywand! 😉
Of the vulnerabilities identified in 2023, the following five were the most common.
Missing patches
This type of vulnerability occurs when systems or applications are not kept up to date. They can easily be exploited by hackers to gain access to systems and data.
Web misconfiguration (content security policy)
Incorrect configuration of the web server can make it easier for hackers to intercept and/or manipulate data. In particular, the content security policy should protect against so-called cross-site scripting (XSS) attacks. This means that malicious code cannot be infiltrated on the respective website.
Encryption misconfiguration (SSL/TLS)
These encryptions are used to ensure the security of data transmissions on the internet. Misconfiguration of these settings can make it easier for hackers to intercept data.
Outdated operating systems
Older operating systems can be more easily exploited by hackers as they are usually no longer patched by the manufacturers.
Insecure authentication
Weak points in authentication can allow hackers to gain access to systems and data by impersonating authorised users.
2023 was an exciting year full of challenges, new opportunities and successes that we mastered together. We appreciate the commitment of our great team and the valuable partnerships.
2024 is all about expansion - we plan to continue to invest in new employees, increase our pace in the development of new features and drive the scale-up into new markets. One clear goal is to triple the size of our partner landscape in order to make our altruistic approach to security auditing accessible to even more small and medium-sized companies.
Topics for 2024:
NIS2 support through lywand
Cloud security
Implementation & prioritisation of feature requests from our partners
One thing is clear: 2024 will be lywand!
Guide
System hardening is an essential process for protecting your customers' IT infrastructure. But what exactly is system hardening and why is it so important?
Feature
As part of our security audits, compliance with CIS benchmarks is now also displayed. Read the article to learn more about this new feature and the added value it provides.
Guide
This article highlights the differences between the traditional IT service model and the Managed Service Provider (MSP) approach. It explains the advantages of the MSP approach and how the transition from a traditional IT service provider to an MSP can be successfully managed.