Azure Firewall solution expanded with 5 new analytic rules targeting high/medium severity threats, DDoS attacks, web application attacks, and privilege escalation attempts. Read More →

Lumen Defender Threat Feed solution updated with V2 connector using new API v3 endpoint, removing deprecated V1.1 connector entirely. Read More →

New ASIM parser normalizes AWS CloudTrail user management events from IAM and Cognito services into Microsoft Sentinel. Read More →

ASIM Authentication schema expanded to include NetworkCleartext authentication subtype for cleartext password events. Read More →

Additional rsyslog configuration files added with source IP filtering capabilities to improve log collection accuracy and data connector UI guidance. Read More →

Customer-reported broken links fixed in analytic rule descriptions with corrected MITRE technique references and restored documentation. Read More →

New analytic rules correlate threat intelligence indicators with GSA traffic while MCP Servers Dashboard provides Model Context Protocol server monitoring. Read More →

New PowerShell tooling enables agentless SAP data collection via Integration Suite with dual-mode credentials and CSV-based destination management. Read More →

Azure portal deployment failures resolved by fixing empty location parameters and updating Python runtime compatibility to prevent connector breakage. Read More →

meshStack event logging connector enables cloud platform governance monitoring by ingesting developer platform events into Microsoft Sentinel. Read More →

Microsoft Defender XDR AlertEvent parsers updated with optimized KQL logic, corrected field mappings, and enhanced IP address collection. Read More →

Comprehensive documentation tool update adds lake-only ingestion tracking, collection methods index, and enhanced connector association analysis. Read More →

Official TacitRed Defender TI solution from Data443 enables automated sync of compromised credentials to Microsoft Defender Threat Intelligence. Read More →

TacitRed SentinelOne solution metadata updated for Partner Center alignment with ARM template variable corrections. Read More →

TacitRed solution metadata updated for Partner Center publisherId.offerId alignment. Read More →

Missing .python_packages dependency added to function app package, resolving deployment failures that blocked connector installations. Read More →

ASIM sudo parser updated to schema 0.1.4 with improved field mappings, severity normalization, and code deduplication. Read More →

OCI connector now supports Group Cursor mode alongside Individual Cursor for improved streaming partition consumption flexibility. Read More →

Rapid7 InsightVM Function App connector updated to use latest 4.x Azure Functions extension bundles from deprecated 3.x version. Read More →

Advanced hunting query detects punycode domains using Cyrillic, Greek, and fullwidth ASCII characters to visually impersonate legitimate domains in email and Teams. Read More →