# Week 43, 2023

In this week’s release, we’re providing new ways to operationalize Oort’s checks. Read on to learn more!

<br>

### 📳 Prioritize Response to Users with Failing Checks

The majority of our customers have thousands of users in their population, making it challenging to understand where to best focus your efforts. While some of you use our integrations with ticketing, SIEM, and IM tools, others prefer to log in to the Oort dashboard. &#x20;

In this release, we’ve added a new sort option within the Users tab to identify the most at-risk users. This will enable you to sort the users list by the ascending or descending number of checks. &#x20;

<br>

<figure><img src="/files/fBZtrpV9FGYxxZpTBxWw" alt=""><figcaption></figcaption></figure>

<br>

### ⚙️”Never Logged In” Check is now Event-Based

One of the less-glamorous (but highly effective) checks is the “Never Logged In” check, which detects accounts that were created but never successfully logged in. These accounts appeal to attackers as they may be able to register their own MFA factors.&#x20;

In this release, we’re moving this check to an “event-based” model.

One of the unique traits of Oort is the ability to consume both event data and entitlement data, which enables us to provide you with a more comprehensive understanding of your identities. The checks that analyze event information are known as “event-based checks”.&#x20;

Event-based checks have different, more frequent collection schedules and have the ability for you to leave feedback (interesting vs  mark as normal behavior).&#x20;

\
\
\
\ <br>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.oort.io/release-notes/2023/week-43-2023.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.