Zscaler ZIA ASIM Parser: Device Model Field Parsing Fix Restores Visibility
ASIM WebSession parser for Zscaler ZIA corrected devicemodel parsing logic that was preventing proper device categorization. Read More →
WithSecure Elements Connector: Critical requests Security Update
requests library upgraded to 2.32.4 patching CVE-2024-47081 netrc credential leak vulnerability. Read More →
ESET Protect Platform Connector: Critical urllib3 Security Update
urllib3 dependency upgraded to 2.5.0 patching two CVE redirect control vulnerabilities (CVE-2025-50181, CVE-2025-50182). Read More →
Squadra Technologies SecRMM: Compliance Update Adds Required Detection Rule
SecRMM solution updated to v3.0.0 with mandatory analytic rule for removable storage monitoring to meet Microsoft Sentinel compliance requirements. Read More →
AWS S3 Connector: Python Runtime Upgrade and Boto3 Compatibility Fix
Function App connector updated to Python 3.11 with boto3 fix for missing CommonPrefixes handling. Read More →
SAP BTP Connector: Critical Pagination Fix Restores Missing Security Events
CCF connector pagination bug fixed - deployments were missing audit events due to failed token parsing. Read More →
GCP Security Command Center: New Detection Suite for Cloud Misconfigurations
New Solution delivers 5 Analytic Rules and 5 Hunting Queries to detect GCP security misconfigurations including unrestricted API keys, disabled security features, and risky IAM configurations. Read More →
Rubrik Security Cloud: API Hostname Configuration Update for Customer Deployments
Rubrik Security Cloud solution updated to v3.5.1 with corrected API hostname defaults across all playbooks and custom connector. Read More →
Mimecast Connectors: Migration to Log Ingestion API Eliminates Legacy Workspace Key Dependency
Mimecast Function App connectors migrated from legacy Log Analytics ingestion to Azure Monitor Log Ingestion API, requiring DCR reconfiguration. Read More →
AWS CloudWatch Connectors: Critical Python 3.13 Compatibility Fix
Removed problematic CSV handling causing Lambda function failures on Python 3.13 runtime in CloudWatch connectors. Read More →
UEBA Essentials: Enhanced Multi-Cloud Detection with 6 New AWS, GCP & Okta Hunting Queries
Major update adds comprehensive multi-cloud anomaly detection capabilities across AWS, GCP, and Okta platforms with 6 new hunting queries. Read More →
AWS S3 Connector: Python 3.11 Runtime Migration
AWS S3 Function App connector updated to Python 3.11 runtime following Python 3.9 deprecation. Read More →
Vectra XDR: Log Ingestion API Migration and Enhanced API v3.4 Support with New Playbook Capabilities
Vectra XDR solution updated to API v3.4 with Log Ingestion API support, three new playbooks for PCAP download and detection management. Read More →
Business Email Compromise: Fixed Alert Display Variable Reference
Corrected alert display format to use correct variable name CountOfDocs instead of non-existent number_of_files_accessed. Read More →
New Pathlock Threat Detection and Response Solution: SAP Security Integration for Microsoft Sentinel
Push-based connector integrating Pathlock TDnR SAP security monitoring with Microsoft Sentinel for enhanced SAP application security visibility. Read More →
Salesforce Service Cloud: Critical Detection Rule Fixes for TimestampDerived Field
Essential bug fixes for Salesforce Service Cloud detection rules resolving datetime conversion issues that prevented rule creation. Read More →
CrowdStrike Falcon: Enhanced Threat Intelligence Connector with Improved Error Handling
Updated CrowdStrike Falcon Adversary Intelligence connector with better configuration validation, error handling, and code quality improvements. Read More →
VMRay Connector: Fixed Premium ARM Template Security Configuration
ARM template deployment fix adds mandatory TLS 1.2 enforcement and corrects resource configuration for VMRay Function App connector. Read More →
VMware ESXi SSH Brute Force Detection Plus Multi-Solution Updates
New VMware ESXi detection for multiple failed SSH login attempts, plus comprehensive solution updates across 15+ vendor solutions. Read More →
Threat Intelligence Detection: Critical Timing Fix for Cloud App Email Indicators
TI analytic rule query periods reduced from 10 days to 1 hour to prevent false negatives from timing mismatches. Read More →