Updates and Releases

Release 5.8 - June 18, 2020
New chart view added to the Data Reports area
Click on the Chart Icon to quickly find out what specific risk hits impacted scores. Chart shows Risk Hits, Score Impact, Grouped by Risk Level. This chart can help you quickly identify why filtered lists of data are scoring bad or good. Give it a try and let us know what you think.
Added Campaign and Lead Source Report API
The API empowers users to get real-time reports on performance by Lead Source and Campaign. Easy to connect into Google Sheets or Excel to monitor lead source and campaign results. This replaces any emailed reports on performance. You can get more info using the API and view live data in an excel, gSheet, or any program that parses JSON to create tables.
Security
Enhanced with IP ACLs to limit IPs that can call our APIs. IP ACLs limit inbound traffic to our api and feed-api endpoints. By default, our endpoints accept traffic from most IPs. By adding your IPs to this list, you restrict all endpoint access to only those IPs on ACL list. The ACL supports individual IPv4 entries as well as v4/24 CIDR blocks. To access, click on Account->Settings. If the ACL IPs are set and call from other IPs hit our endpoints, the JSON response code will be -6 with the error description of IP not in ACL.
Other Features
Added new cache times to both repeat and unique from 5 minutes to 12 hours. These settings are per API key.
All portal users will be asked to check their profile data every six months. Please make sure to update any wrong info. Admins can also add a phone number for text alerts on downtown and security issues from E-HAWK.
New Portal page of Account->Settings where you can manage the account main and technical contacts as well as get quick links to security settings. We will be adding Subscription info and credit card payments to the page in a future release.
We updated the look and feel of www.ehawk.net, created a new section for API docs (we now have 8 APIs) and simplified adding a ticket to our support system in the portal.
Release 5.7 - February 11, 2020

Version 5.7 adds new Email: Suspect Pattern test for emails that have bot like addresses. Default score is -5. Review your results and modify scoring as needed. The release also includes many backend updates for our portal such as updated charting, icons, and JS speed improvements.

Version 5.6 - December 17, 2019

Version 5.6 includes Two Factor Authentication for portal logins. For extra security, turn on Two Factor Authentication (2FA) for your account in the portal under Account | Profile. Also included are: New scoring report on the Data area that will download all data with risk hits and scoring, updated Dashboard charts, and several bug fixes.

Version 5.5 - November 19, 2019

Version 5.5 includes new tests for:

IP Connection Type
new scoring hits of: Connection Cable DSL, Connection Corporate, Connection Dial-up, Connection Cellular, or Connection Type Unknown. For existing API keys, these scores default to 0/Off. Please update in scoring profiles to start scoring these items.
Phone Carrier
for clients with extra phone testing: JSON returns carrier name and two scoring tests of Carrier Top US (Carrier is one of the top 4 US: ATT, Verizon, Sprint,T-Mobile) and Carrier Not Top US

We also fixed several bugs and made improvements in the backend to speed up API calls and portal dashboards. All charts and data show for 35 days and the Top Lists are now real-time.

Version 5.4 - October 15, 2019

Version 5.4 includes a redesign of our back-end to speed up reporting and portal data analysis. Also added a maximum millisecond setting for API processing time as well as security enhancements of session expire notices and password time limits.

Version 5.3 - June 4, 2019

Version 5.3 includes new tests:

  • Activity Multiple: IP has X Emails - when an IP has multiple emails. Default -1
  • Activity Multiple: Emails has X IPs - when an Email has multiple IPs. Default -1
  • Activity Multiple: IP has X Phones - when an IP has multiple phones. Default -1
  • Activity Multiple: Phones has X IPs - when a phone has multiple IPs. Default -1
  • Name: Profanity - Name contains profanity or high risk word. Default -50

Also added in the portal for Lead Source a new sort for Updated: New to Old and Old to New, fixed a bug for listing activity repeats in download reports, and improved back-end speeds.

Version 5.2 - May 7, 2019

Version 5.2 includes new features, tests, and some bug fixes listed below.

  • Access Control per API key for Portal users - limit the data they can view
  • Tag API paging and numbering parameters for large data sets
  • Domain Age checking extended to 60 days
  • Tagging common domains and email domains in the portal is not allowed anymore (gmail, icloud, hotmail, etc). You can still add via the Tag API, but too many clients were tagging gmail.com as bad by mistake and causing all traffic to score bad.
  • Added settings for Activity Multiple cache time frame
  • Added end date support for Report API<
  • New Tests
    • Domains and emaildomains (like .tk) that are free to own. Risk Hits are Domain: Free Domain and Email: Free Emaildomain. Default score -5
    • Email: Suspect Local checking the local part of emails for high risk patterns. Default score -5. Highly recommend this scores -80 or worse if you do not want email with the F word, etc. in them.
    • Name: Improper Case checks the name for proper case. Default score -1
  • Fixed: Lead ID exact search, download reports are now filtered properly
Version 5.1 - February 26, 2019

Version 5.1 is a minor release adding roll-up reporting for accounts with multiple API keys, domain traffic estimates as an extra charge feature, and many back-end speed improvements and bug fixes.

Version 5.0 - January 2, 2019

Version 5 is a major update to our platform empowering API key management, additional scoring and settings, and new tests. We have also


Manage and create API keys, Settings and Scoring

The portal has a redesigned area for managing API keys, changing scoring and settings. In the Account menu for Admins is a new option of API Keys Setting and Scoring. From there Admins can create, regenerate, and name keys. Each key also has unique Settings and a Scoring Profile.

Each account has one primary API Key (identified with key icon). All keys support vetting (api.ehawk.net) and feed (feed-api.ehawk.net: Tag, Alert, Activity, Report) API calls.

Keys with access to the Community API are identified with a icon and must be used for adding/managing Community data.

Each key has separate data, reporting, tags, alerts, fingerprints, activity tracking, settings, scoring profile and is listed by name in the View select menu to filter portal data. Use icons to copy Primary key settings and/or scoring to other keys.

The screens-hot below shows the new features and how to manage API keys.

We also added two API calls for scoring profile reports for an API key:
https://feed-api.ehawk.net/score/profile/?format=csv returns a .CSV file
https://feed-api.ehawk.net/score/profile/ returns a JSON

Updated Scoring and Setting Areas

The Scoring Profile area has been updated to hopefully make setting custom scoring and tracking easier. We have added a download link to get your scoring details in a .csv file. Click on the Area tabs and adjust scoring. No more labels, just numbers to adjust scoring.

New tests in Email, Activity Unique, IP

In addition to improving our blacklists and pattern recognition engine, we added the following tests:

  • IP Invalid returns when an invalid IP is sent, default score is -10
  • Activity Unique These hit when a unique items, such as email, has multiple items, such as phones. Each area has hits from 2 to 5+ repeats for scoring different levels. Default scoring for all hits is -1. Adjust based on your business needs. New tests include:
    • Email from X Lead Sources - when an email has multiple lead sources
    • Email from X Campaigns - when an email has multiple campaigns
    • Username links to X Emails - when a username has multiple emails
    • Email links to X Usernames - when an Email has multiple usernames
    • Username links to X Phones - when a username has multiple phones
    • Phone links to X Usernames - when a phone has multiple usernames

Updated Settings

In the settings area, per API key, you can now set timeout=>false for all API calls. This is recommended if sending email, domain, or phone as it adds many tests to the service. The system also supports adding multiple emails to Alerts. And finally, we have removed the requirement for an IP to process API calls. The API requires a minimum of IP, Email, OR Domain to run, so you could just send an email address. Please contact support if you would like help.