Corelight: Enhanced Data Fidelity for Network Aggregation Events
Fixes field mapping inconsistencies in Corelight aggregation parsers that caused data loss and adds aggregation filtering to the Data Explorer workbook. Read More →
Fixes field mapping inconsistencies in Corelight aggregation parsers that caused data loss and adds aggregation filtering to the Data Explorer workbook. Read More →
Partner Center certification blocker resolved with single bracket correction in ARM deployment template. Read More →
New analytic rules target jailbreak attempts, external access, plugin tampering, and file upload disabling - covering major AI security attack vectors. Read More →
Google Workspace Reports CCF connector exits preview status with updated OAuth configuration guidance. Read More →
blacklens.io Attack Surface Management platform now available in Content Hub with webhook-based alert ingestion and automated incident creation. Read More →
Cisco Umbrella connector fixes critical null-byte corruption in Azure File Share state markers that was causing complete ingestion failures. Read More →
Varonis Purview schema update adds new fields and corrects data types, improving query reliability for asset tracking and classification data. Read More →
Cosmetic title change to clarify the connector uses Codeless Connector Framework for Netskope API ingestion. Read More →
Cosmetic title change from “Box Events (CCP)” to “Box Events (via Codeless Connector Framework)” to reflect current terminology. Read More →
Cosmetic title change to clarify the connector uses Codeless Connector Framework for Okta API ingestion. Read More →
Cosmetic title change to clarify the connector uses Codeless Connector Framework for API ingestion. Read More →
Connector title updated to indicate CCF usage, but incorrectly uses deprecated “Codeless Connector Platform” instead of current “Codeless Connector Framework” terminology. Read More →
Cosmetic title change to clarify the connector uses Codeless Connector Framework for AWS S3 ingestion. Read More →
Analytic rule optimization introduces potential detection gaps by reordering deduplication before indicator validity checks. Read More →
Auth0 connector display name updated to clarify CCF implementation, supporting connector adoption transparency. Read More →
All IPinfo connector Azure Function packages rebuilt to resolve dependency issues with Linux runtime. Read More →
Two new threat scan event types added to ingestion with regex fix for PascalCase field extraction. Read More →
Illumio Function App connector replaces DefaultAzureCredential with ManagedIdentityCredential, eliminating client secret exposure. Read More →
New Content Hub solution automates IOC ingestion from Cyren CCF feeds (IP reputation and malware URLs) into SentinelOne for automated threat detection and response. Read More →
New CCF connector enables ingestion of AWS Elastic Load Balancer access and flow logs into Microsoft Sentinel for network traffic monitoring and threat detection. Read More →