SpecterIQ Release Notes

SpecterIQ is an Identity Threat Detection and Response (ITDR) platform. It brings behavioral analytics and machine learning to identity activity across your environment — surfacing compromised credentials, insider threats, and identity-based attacks in real time.

These notes cover what's new, improved, fixed, and secured in each release.

Version 1.0.0

June 2026 · Initial Release

We're thrilled to announce the launch of SpecterIQ 1.0 — our first general-availability release. SpecterIQ unites behavioral identity analytics and machine learning to help your team detect and respond to identity-based threats as they happen, not days later.

🎉 What's New

Five Machine Learning Detection Models

SpecterIQ 1.0 ships with five machine learning models that work together to identify:

  • Compromised credentials
  • Insider threats
  • Anomalous user behavior
  • Identity-based attacks
  • Suspicious access patterns

Instead of relying on static rules, the models learn what "normal" looks like for your organization and flag the deviations that matter.

Why it matters: Detection adapts to your environment rather than a generic rulebook — so you catch real threats and spend less time chasing noise.

Connector Framework for Data Ingestion

Our flexible Connector Framework brings data from your existing security tools and identity providers into SpecterIQ. Onboard your sources quickly and start analyzing behavioral patterns across your entire environment — no complex, custom integration work required.

Why it matters: No more data silos. Get a unified view of identity activity across every system you run.

OpenID CAEP 1.0 Support

SpecterIQ fully supports the OpenID Continuous Access Evaluation Profile (CAEP) 1.0, enabling real-time security-event sharing across your identity ecosystem. Compromised credentials and suspicious sessions can be detected — and acted on — the moment they occur.

Why it matters: Your security tools work together, exchanging critical signals instantly instead of waiting for the next sync.

Entity Risk Score API

Retrieve real-time risk scores for users, devices, and other entities through our new REST API. Pull live risk intelligence directly into your applications, automation, and security-orchestration workflows.

Why it matters: Drive access decisions with current risk. Grant access, trigger step-up authentication, or block suspicious activity automatically, based on what's happening right now.

User Journeys — Graph-Based Investigation

Finally, understand the full story behind every alert. User Journeys provides interactive, graph-based visualizations that map a user's behavior over time — showing the connections between events, devices, locations, and access patterns, and making it clear exactly why an activity was flagged.

Why it matters: Investigate with context instead of guesswork. Separate genuine threats from false positives at a glance by seeing the complete picture of user behavior.

SpecterIQ is built by Bana Solutions for mission-critical federal environments.