Dependency update from urllib3 1.26.20 to 2.6.0 addresses two high-severity CVEs preventing DoS attacks via decompression bombs and content encoding chains. Read More →

Updated urllib3 dependency to v2.6.0 to address two high-severity CVEs affecting HTTP decompression handling. Read More →

Microsoft Copilot connector fixes critical table reference issue, standardizing on official CopilotActivity table name across all components. Read More →

CCF connector update fixes timestamp extraction, adds configurable API endpoints, and expands log data collection for better event visibility. Read More →

Updates Revoke-AADSignInSessions playbook documentation to use correct User.RevokeSessions.All permissions instead of broader User.ReadWrite.All. Read More →

Corrected field name from incident_id_s to incidentId_s in Contrast EDR detection rule. Read More →

Lookout solution updated to v3.0.1 with parser fixes, comprehensive security dashboards, and enhanced analytic rules. Read More →

Corrected field name parsing errors in SlackAuditV2_CL that were causing channel sharing status and IP context data to return null. Read More →

Two ProofPoint TAP Analytic Rules updated to reference ProofpointTAPv2 connector ID, ensuring compatibility with the newer connector version. Read More →

Field name inconsistencies in Fortigate ASIM parsers corrected to ensure proper schema compliance and data normalization. Read More →

SAP agentless package updated to use Log Analytics v2 API for heartbeats and added audit log user exclusion capabilities. Read More →

Removed time-based query parameters from Proofpoint On-Demand Email Security connector to prevent duplicate data ingestion caused by time rounding overlaps. Read More →

New SOC Prime Platform audit logs data connector added using CCF framework, providing visibility into SOC Prime TDM platform user activities and administrative actions. Read More →

Corrected case-sensitive path reference that was preventing Azure Firewall WebSession parser deployment. Read More →

Resolved ARM-TTK validation errors preventing ProofPoint TAP solution deployment. Read More →

Three new entity analyzer playbooks added with HTTP, URL, and incident triggers for automated URL and user entity enrichment. Read More →

Marketplace preparation updates including publisher ID changes, logo corrections, and DCR configuration fixes for Cyera DSPM solution. Read More →

Corrected PowerShell variable scoping and AWS CLI command syntax in CloudTrail configuration script. Read More →

Added six new aggregation parsers for Corelight sensor data including DNS, HTTP, files, connections, SSL, and weird events with improved CIM mapping. Read More →

Minor documentation and configuration fixes for AbuseIPDB playbooks including corrected image source and typo corrections. Read More →