Field Effect MDR Integration: New CCF Connector Delivers Cloud-Based Threat Detection

Field Effect MDR solution adds Microsoft Sentinel ingestion for ARO (Automated Response Operations) alerts via CCF, expanding managed detection coverage. Read More →

MuleSoft CloudHub: CCF Alerts Connector Expands DevOps Monitoring Coverage

New CCF connector adds alert ingestion capability to existing MuleSoft CloudHub logs solution, enabling comprehensive application lifecycle monitoring. Read More →

AWS Security Hub Compliance Workbook Metadata Added to Content Registry

Workbook metadata entry added for AWS Security Hub compliance visualization — workbook content deployment follows separately. Read More →

Cisco ETD: Migration to Message Event Logs API with Enhanced Email Security Visibility

Labeled P0 — assess deployment or pipeline breakage risk explicitly. Complete connector overhaul migrates to new Message Event Logs REST API providing enhanced email visibility beyond convicted messages. Read More →

Contrast ADR: Enhanced Attack Event Schema with Code Location and Vector Analysis Fields

CCF connector schema updated to capture additional attack context with codeLocation, vectorAnalysis, and request_parameters fields for improved threat analysis. Read More →

StealthTalk: New Enterprise Authentication Monitoring Solution with MITRE-Mapped Detection Portfolio

Complete StealthTalk Enterprise solution delivers four analytic rules targeting credential attacks (T1078, T1110, T1098) plus ASIM Authentication parsers and Teams integration. Read More →

MuleSoft CloudHub: CCF Push Connector Eliminates API Rate Limits and Duplicate Data Issues

MuleSoft deploys real-time Log4j HTTP appender connector via CCF, offering customers performance alternative to existing Azure Function connector. Read More →

Microsoft 365 Audit Pipeline: Two New CCF Connectors Fill Copilot, DLP, and Specialty Workload Visibility Gap

New dual-connector CCF solution ingests 30 Microsoft 365 audit workloads including Copilot interactions, DLP events, and 29 specialty services into a unified 321-column schema. Read More →

Cyren Threat Intelligence: Data Fidelity Fix Corrects IP Field Pollution by URL UUIDs

DCR transform fix stops storing malware URL UUIDs in IP fields — improves data quality for threat intelligence queries. Read More →

Pathlock TDnR Connector: Critical JSON Fix Restores Deployment Capability

Invalid JSON in Pathlock TDnR connector definition blocked deployment via strict parsers — critical fix for P0 issue. Read More →

Cisco Meraki Parser: Critical Self-Reference Recursion Fixed After v3.0.5 Packaging Error

Restores Cisco Meraki parser functionality by fixing table reference error that caused recursive failure and broke all downstream queries. Read More →

Valimail Enforce Solution: Publisher Name Typo Corrected in Sentinel UI

Fixes misspelled publisher name from Valimmail to Valimail in the Data Connector configuration UI. Read More →

Agent 365 Solution: Content Hub Update Detection Restored After Package ID Mismatch

Restores Agent 365 v3.1.1 Content Hub update detection by fixing solution ID mismatch that prevented upgrade notifications. Read More →

Digital Shadows: Updated EventReportUrl to Use GreyMatter Platform Links

Digital Shadows analytic rules now use server-provided GreyMatter URLs instead of deprecated portal links, preventing broken URL entities in Sentinel incidents. Read More →

Vaikora Connector: Zero Data Ingestion Fixed After DCR Stream Mapping Failure

Critical fix restores Vaikora AI agent behavioral data after complete ingestion failure caused by DCR stream column mismatch. Read More →

Lookout Connector: Critical Data Loss Fix for Mobile Threat Event Identifiers

Lookout Mobile Risk API v2 connector was silently dropping unique event identifiers (oid field), breaking all downstream correlation in detections and workbooks. Read More →

BitSight Solution: Provider Information Updated to Partner Status

BitSight solution metadata updated to reflect partner provider status, transitioning from Microsoft internal to external partner support. Read More →

Zoom Data Connector: Legacy Azure Function Files Removed from Standalone Location

Legacy Zoom connector files removed from DataConnectors folder — connector has been migrated to Solutions/ZoomReports. Read More →

Corelight: Dashboard Restructure and New Asset Classification Tab for Enhanced Network Visibility

Corelight solution restructured workbooks and added asset classification functionality to improve network asset discovery and security monitoring capabilities. Read More →

Pathlock TD&R: Major Detection Coverage Expansion with 77 New SAP-Focused Analytic Rules

Pathlock Threat Detection & Response adds 77 comprehensive SAP security analytic rules covering ABAP changes, user activities, system modifications, and financial data access. Read More →