Microsoft Teams Security: 7 New Hunting Queries for URL Threat Detection
New hunting queries added to detect malicious URL clicks, ZAP events, and user submissions in Microsoft Teams. Read More →
New hunting queries added to detect malicious URL clicks, ZAP events, and user submissions in Microsoft Teams. Read More →
New solution added for Cyera DSPM providing data security monitoring with both CCF and Function App connectors. Read More →
New solution providing push connector to sync Varonis data resources into Microsoft Purview via Sentinel data lake. Read More →
New Open Systems solution enables ingestion from multiple security products via Logstash with ASIM parsers for authentication, firewall, and proxy logs. Read More →
New Solution delivers 5 Analytic Rules and 5 Hunting Queries to detect GCP security misconfigurations including unrestricted API keys, disabled security features, and risky IAM configurations. Read More →
Push-based connector integrating Pathlock TDnR SAP security monitoring with Microsoft Sentinel for enhanced SAP application security visibility. Read More →
New VMware ESXi detection for multiple failed SSH login attempts, plus comprehensive solution updates across 15+ vendor solutions. Read More →
Corelight solution gains two new parsers for machine learning-based anomaly detection and first-seen event tracking. Read More →
New CCF-based connector for OneTrust enables monitoring of privacy compliance, data governance, and risk management activities in Sentinel workspaces. Read More →
New Morphisec CCF connector provides endpoint protection monitoring with advanced threat detection capabilities and process-level anomaly detection. Read More →
New HIPAA Compliance solution adds comprehensive workbook for healthcare privacy monitoring and compliance tracking with bundled Microsoft 365 hunting queries. Read More →
New BigID DSPM solution provides CCF connector for ingesting data security posture cases, affected objects, and datasource information into Microsoft Sentinel. Read More →
Three new Analytic Rules added across AWS CloudTrail and VMware ESXi — detecting EC2 startup script tampering (T1059), anonymous S3 object exfiltration (T1530), and SSH enablement on ESXi hosts (T1021). Read More →
New GDPR Compliance solution adds workbook consolidating privacy risk signals from Defender XDR, Microsoft Purview, Azure SQL, and Entra ID. Read More →
New Cloudflare connector solution delivers comprehensive log ingestion through CCF blob integration for enhanced web traffic and security monitoring. Read More →
Palo Alto Prisma Cloud dependency security update alongside new Obsidian Datasharing and SAP S4 Cloud Public Edition connector solutions. Read More →
New SAP S/4HANA Cloud Public Edition CCF connector enables ingestion of security audit logs into Microsoft Sentinel SAP solution. Read More →
New connector solution for ingesting Obsidian platform security data into Microsoft Sentinel. Read More →
New TAXII Export connector enables Microsoft Sentinel to share threat intelligence indicators with external TAXII 2.1 servers. Read More →
New VirtualMetric DataStream solution provides comprehensive data ingestion capabilities with ASIM support and multiple deployment options for Sentinel and data lake environments. Read More →