<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Email Security on sentinelchangelog.net</title><link>http://sentinelchangelog.net/tags/email-security/</link><description>Recent content in Email Security on sentinelchangelog.net</description><generator>Hugo -- 0.157.0</generator><language>en</language><lastBuildDate>Wed, 01 Jul 2026 07:53:17 +0000</lastBuildDate><atom:link href="http://sentinelchangelog.net/tags/email-security/index.xml" rel="self" type="application/rss+xml"/><item><title>Abnormal Security Solution: Full Detection Coverage Added for CCF Push Connector (v3.1.0)</title><link>http://sentinelchangelog.net/posts/2026-07-01-pr-14419/</link><pubDate>Wed, 01 Jul 2026 07:53:17 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-07-01-pr-14419/</guid><description>The Abnormal Security solution now ships four scheduled Analytic Rules, four Hunting Queries, four parsers, a workbook, and a Playbook â closing a complete detection gap that existed since the CCF Push connector was introduced in v3.0.0 with no bundled detections.</description></item><item><title>New Solution: Vaikora for O365 Brings CTASD-Powered Phishing Quarantine Telemetry into Microsoft Sentinel</title><link>http://sentinelchangelog.net/posts/2026-06-25-pr-14289/</link><pubDate>Thu, 25 Jun 2026 11:56:08 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-25-pr-14289/</guid><description>A brand-new Sentinel solution for Vaikora for O365 (by Data443) adds three Analytic Rules over the VaikoraO365_Quarantine_CL custom table &amp;ndash; covering high-confidence phishing/suspected quarantine events, abnormal quarantine volume spikes, and engine-offline detection &amp;ndash; plus an incident-response Playbook and a quarantine dashboard Workbook.</description></item><item><title>CiscoSEG and Infoblox NIOS Package Template Sync — Metadata and Version Normalisation</title><link>http://sentinelchangelog.net/posts/2026-06-18-pr-14497/</link><pubDate>Thu, 18 Jun 2026 09:32:21 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-18-pr-14497/</guid><description>Package template refresh for CiscoSEG (3.0.5), Infoblox NIOS (3.0.5), and Windows Server DNS (3.0.1) solutions with no changes to detection logic, parser content, or connector ingestion configuration.</description></item><item><title>Phishing Detection: Raw IP URLs in Delivered Email</title><link>http://sentinelchangelog.net/posts/2026-05-26-pr-14340/</link><pubDate>Tue, 26 May 2026 06:30:21 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-05-26-pr-14340/</guid><description>New hunting query identifies delivered emails using raw IPv4 addresses as URL domains to detect phishing campaigns bypassing domain reputation systems.</description></item><item><title>Fortra Agari CCF Connector: Modern Email Security Data Ingestion</title><link>http://sentinelchangelog.net/posts/2026-05-19-pr-14271/</link><pubDate>Tue, 19 May 2026 05:25:52 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-05-19-pr-14271/</guid><description>Fortra Agari transitions from Azure Functions to CCF framework, restoring Brand Protection, Phishing Defense, and Phishing Response visibility with DCR-based ingestion.</description></item></channel></rss>