Cyren-SentinelOne Playbook: Credential Parameter Security Compliance Fix
Fixed Policy 300.4.1.1 violation by securing credential parameters in the Cyren-SentinelOne threat intelligence integration Playbook. Read More →
Changelog
Tenable VM Parser: CVSS 4.0 and VPR v2 Field Mapping Restores Missing Vulnerability Scoring Data
Tenable VM vulnerability parser now extracts CVSS 4.0 vector components and VPR v2 threat intelligence previously unmapped from ingested vulnerability scans. Read More →
D3 Smart SOAR: Version Bump to 3.1.0 for Partner Center Resubmission
Version increment from 3.0.0 to 3.1.0 to enable Partner Center to detect previously submitted fixes including pagination improvements and branding updates. Read More →
Corelight: Enhanced Data Fidelity for Network Aggregation Events
Fixes field mapping inconsistencies in Corelight aggregation parsers that caused data loss and adds aggregation filtering to the Data Explorer workbook. Read More →
Lookout Mobile Threat Defense: ARM Template Certification Fix
Partner Center certification blocker resolved with single bracket correction in ARM deployment template. Read More →
Microsoft Security Copilot: Six New Detections for AI Assistant Abuse
New analytic rules target jailbreak attempts, external access, plugin tampering, and file upload disabling - covering major AI security attack vectors. Read More →
Google Workspace Reports Connector Promoted to General Availability
Google Workspace Reports CCF connector exits preview status with updated OAuth configuration guidance. Read More →
New Attack Surface Management Solution: blacklens.io Brings External Threat Visibility to Microsoft Sentinel
blacklens.io Attack Surface Management platform now available in Content Hub with webhook-based alert ingestion and automated incident creation. Read More →
Anomalous Single Factor Sign-in Detection: Version Metadata Update
Version bump to 1.0.6 for Anomalous Single Factor Sign-in detection rule with no logic changes. Read More →
ASIM WebSession Parser: New Cisco Umbrella Proxy Log Coverage
New ASIM parser adds web session visibility for Cisco Umbrella proxy logs, normalizing HTTP/HTTPS traffic data to standard schema. Read More →
Cisco Umbrella Connector: Critical Fix for State Manager Corruption and Data Ingestion Crashes
Cisco Umbrella connector fixes critical null-byte corruption in Azure File Share state markers that was causing complete ingestion failures. Read More →
Varonis Purview Connector: Schema Update Enhances Data Fidelity and Field Coverage
Varonis Purview schema update adds new fields and corrects data types, improving query reliability for asset tracking and classification data. Read More →
Netskope Connector: Title Update to Clarify CCF Usage
Cosmetic title change to clarify the connector uses Codeless Connector Framework for Netskope API ingestion. Read More →
Box Events Connector: Title Update to Clarify CCF Usage
Cosmetic title change from “Box Events (CCP)” to “Box Events (via Codeless Connector Framework)” to reflect current terminology. Read More →
Okta Single Sign-On Connector: Title Update to Clarify CCF Usage
Cosmetic title change to clarify the connector uses Codeless Connector Framework for Okta API ingestion. Read More →
SentinelOne Connector: Title Update to Clarify CCF Usage
Cosmetic title change to clarify the connector uses Codeless Connector Framework for API ingestion. Read More →
Sophos Endpoint Protection Connector: Title Update with Deprecated Terminology
Connector title updated to indicate CCF usage, but incorrectly uses deprecated “Codeless Connector Platform” instead of current “Codeless Connector Framework” terminology. Read More →
VMware Carbon Black Cloud Connector: Title Update to Clarify CCF Usage
Cosmetic title change to clarify the connector uses Codeless Connector Framework for AWS S3 ingestion. Read More →
Microsoft Threat Intelligence: Detection Logic Optimization Risks in Domain/URL Mapping Rule
Analytic rule optimization introduces potential detection gaps by reordering deduplication before indicator validity checks. Read More →
Auth0 CCF Connector: UI Branding Updated for Framework Visibility
Auth0 connector display name updated to clarify CCF implementation, supporting connector adoption transparency. Read More →