SOC Prime Platform: New CCF Connector for Audit Log Visibility

New SOC Prime Platform audit logs data connector added using CCF framework, providing visibility into SOC Prime TDM platform user activities and administrative actions. Read More →

AWS CloudTrail Connector: Fixed Script Logic and Command Syntax Errors

Corrected PowerShell variable scoping and AWS CLI command syntax in CloudTrail configuration script. Read More →

Critical Cloudflare Analytics Rules: Enhanced URL Entity Mapping and Repository Maintenance

P0-labeled update improves URL entity mapping in Cloudflare detection rules alongside extensive repository maintenance and validation improvements. Read More →

Cisco Umbrella Connector: Schema v14 Compatibility and Documentation Updates

Updates Cisco Umbrella Function App connectors to support log schema version 14 with enhanced workspace key documentation. Read More →

ZeroFox CCF Connector: KQL Query Restoration and Multi-Solution Maintenance

ZeroFox CCF connector receives missing KQL query fixes alongside packaging updates across 8+ solutions. Read More →

Security Cleanup: Removing Vulnerable Legacy O365 Teams and RDAP Tools

Deleted legacy O365 DataCSharp Teams connector and RDAPQuery tool due to vulnerable .NET dependencies and security risks. Read More →

Authomize Connector: Critical requests Library CVE-2024-47081 Security Fix

Authomize connector dependency updated to address credential leakage vulnerability in requests library. Read More →

Cisco Umbrella: Enhanced Data Fidelity with Log Format v13-v14 Support

Added support for Cisco Secure log formats v13-v14, exposing AI model tracking and event correlation fields for improved threat context. Read More →

ZeroFox Connector: Fixing Stream Naming Inconsistency Breaking Alert Ingestion

Stream name mismatch between DCR and connector config prevented ZeroFox threat alerts from reaching Sentinel workspaces. Read More →

Fortinet FortiNDR Cloud: Security Update Addresses Python Requests CVE-2024-47081

Critical security update patches CVE-2024-47081 netrc credential leak vulnerability in Python requests library. Read More →

GitHub Enterprise Connector: Improved API URL Configuration Guidance

Enhanced connector definition for GitHub Enterprise audit logs with clearer API URL field labels and format examples to reduce customer configuration errors. Read More →

Palo Alto Prisma Cloud Connector: Policy Data Restored with Missing "detailed" API Flag

Critical data fidelity fix for Palo Alto Prisma Cloud CCF connector — added missing “detailed” flag to API queries, restoring previously excluded policy field data. Read More →

Snowflake Connector: Data Parsing Logic Restored After SQL Query Malformation

Critical fix to Snowflake connector data parsing logic, switching from array-based extraction to proper JSON field extraction, restoring visibility across all log types. Read More →

ZeroNetworks Solution Connector Deprecation: Function App Integration Removed

ZeroNetworks solution updated to version 4.0.0, removing deprecated Function App connector per Microsoft guidance. Read More →

New Quokka Qscout Mobile App Security Solution: Mobile Threat Detection Visibility

CCF connector and detection rule for Quokka Qscout mobile app security analysis platform provides visibility into malicious mobile application findings. Read More →

ZeroFox Enterprise: New CCF Connector Replaces Deprecated CCP Implementation

ZeroFox alert ingestion modernized with CCF-based connector, replacing deprecated CCP framework. Read More →

Cyera DSPM Solution: New Data Security Posture Management Integration

New solution added for Cyera DSPM providing data security monitoring with both CCF and Function App connectors. Read More →

Varonis Purview: New Push Connector for Microsoft Purview Data Governance Integration

New solution providing push connector to sync Varonis data resources into Microsoft Purview via Sentinel data lake. Read More →

WithSecure Elements Connector: Critical requests Security Update

requests library upgraded to 2.32.4 patching CVE-2024-47081 netrc credential leak vulnerability. Read More →

ESET Protect Platform Connector: Critical urllib3 Security Update

urllib3 dependency upgraded to 2.5.0 patching two CVE redirect control vulnerabilities (CVE-2025-50181, CVE-2025-50182). Read More →