Schema Correction: MITRE ATT&CK Field Name Fix Across Multiple Solutions
Critical schema update replaces deprecated requiredTechniques field with correct relevantTechniques field in analytic rules. Read More →
Hunting Queries
Fortigate ASIM Parser: Field Name Consistency Fix for Network Session Schema
Field name inconsistencies in Fortigate ASIM parsers corrected to ensure proper schema compliance and data normalization. Read More →
Critical Cloudflare Analytics Rules: Enhanced URL Entity Mapping and Repository Maintenance
P0-labeled update improves URL entity mapping in Cloudflare detection rules alongside extensive repository maintenance and validation improvements. Read More →
Google Threat Intelligence: Enhanced Threat Hunting with MITRE ATT&CK Integration
Updated threat hunting rules add MITRE ATT&CK mappings and fix parser function calls for improved threat detection coverage. Read More →
UEBA Essentials: Five New Hunting Queries for Advanced Anomaly Analysis and Threat Triage
UEBA Essentials v4.1.0 adds five targeted hunting queries for high-score anomaly triage, trend analysis, template distribution, user-centric investigation, and malicious source IP identification. Read More →
Microsoft Teams Security: 9 Additional Hunting Queries for Advanced Threat Detection
Extended Teams protection hunting coverage with queries for partner impersonation, admin submissions, and external sender analysis. Read More →
Open Systems Connector: aiohttp Security Update 3.10.11→3.12.14 Plus Multi-Solution Changes
Open Systems connector updated aiohttp dependency addressing potential security vulnerabilities, bundled with extensive solution packaging updates. Read More →
Microsoft Teams Security: 7 New Hunting Queries for URL Threat Detection
New hunting queries added to detect malicious URL clicks, ZAP events, and user submissions in Microsoft Teams. Read More →
GCP Security Command Center: New Detection Suite for Cloud Misconfigurations
New Solution delivers 5 Analytic Rules and 5 Hunting Queries to detect GCP security misconfigurations including unrestricted API keys, disabled security features, and risky IAM configurations. Read More →
UEBA Essentials: Enhanced Multi-Cloud Detection with 6 New AWS, GCP & Okta Hunting Queries
Major update adds comprehensive multi-cloud anomaly detection capabilities across AWS, GCP, and Okta platforms with 6 new hunting queries. Read More →
CyberArk Audit Security Update: CVE-2024-47081 Fix Plus Multi-Solution Maintenance
Critical security update for CyberArk Audit requests library addressing credential leak vulnerability, plus comprehensive updates across 8 solutions. Read More →
MongoDB Atlas Connector: Multi-Cluster Support and Performance Improvements
MongoDB Atlas solution updated to support multiple cluster ingestion with performance improvements and extensive hunting query additions. Read More →
HIPAA Compliance Solution: New Healthcare Privacy Monitoring Dashboard
New HIPAA Compliance solution adds comprehensive workbook for healthcare privacy monitoring and compliance tracking with bundled Microsoft 365 hunting queries. Read More →
Lumen Threat Intelligence Solution: Comprehensive New Threat Feed Integration
Complete new solution with 10 analytic rules, hunting queries, workbook, and Azure Durable Function connector for Lumen threat intelligence integration. Read More →