Product release: June 2025

What's new this month:

• Streamline investigations with Detections page

• New Labs feature: Employee verification codes

• Enforce strong passwords with in-browser guardrails

• Merge related employee records

• Customize your webhook events

• Create rules for phishing tool detection and MFA enforcement

• New integration for Microsoft Sentinel

Streamline investigations with Detections page

You can now receive and triage detections in the Push admin console (or get them via the Push REST API, webhooks or ChatOps), giving you a single view of all the security events that Push has detected, such as AiTM phishing, stolen creds, or blocked URLs being visited by employees.

Use the additional telemetry about each detection, such as timestamp, detection URL, type of phishkit detected, Push response action, etc., to understand how to triage the incident.

Learn more

New Labs feature: Employee verification codes

Employees can now get a 6-digit verification code via the Push browser extension that you can use to validate that your help desk is speaking to someone from your organization.

The verification code is the same for all employees at a given organization, and resets every 24 hours. If your help desk needs to verify that they’re speaking to an employee, they can ask them to open the details tray for their Push extension and verify the code.

Employee verification codes is a Labs feature, which means it’s available on an early-access basis and we're particularly interested in hearing from you if this is a problem you're interested in solving using Push.

You can enable Labs features by going to the Settings page of the Push admin console and choosing the Labs tab.

Enforce strong passwords with in-browser guardrails

Prompt your employees to change an insecure password using Push’s new in-browser guardrail, Strong password enforcement.

You can select which password security issues you want to remediate, and which apps you want to target using the configuration rules for this control. Then, when Push observes a password issue, it will automatically display a banner to end-users prompting them to change their password.

Learn more

Merge related employee records

If you have employees using multiple email addresses, you can now merge those records in the Push platform so they can be treated as a single employee.

A common use case for merging employee records is when you have employees with a user account and an administrator account. By merging records in cases like this, you can resolve incorrect shared account findings and correct your license usage so only the primary employee record consumes a license.

You can also merge records programmatically via the Push REST API. This is helpful if you have a predictable pattern for usernames you're mapping.

Learn more

Customize your webhook events

You can now select which events you want when creating a webhook in the Push platform. For example, if you want to build an automation around specific Push events or send only Push detection alerts to your SIEM, you can elect to send just those events to your configured destinations.

You can select which events you want to consume when configuring a new webhook via the Push admin console.

Learn more

Create rules for phishing tool detection and MFA enforcement

We’re continuing to add configuration rule capabilities to security controls in the Push platform, including for phishing tool detection and MFA enforcement.

With these config rules, you can scope a control to specific employees or employee groups, and carve out exemptions if you like. You can also set the control to apply to specific apps, or set the Mode (e.g. Monitor, Warn, or Block), where applicable.

Learn more

New integration for Microsoft Sentinel

Push now offers a Microsoft Sentinel integration to make it easier to send Push data to your Sentinel SIEM. You can start setting up your integration by going to Settings > Integrations in the Push admin console and selecting the Sentinel tile.