T1110 on sentinelchangelog.net

T1110 on sentinelchangelog.nethttp://sentinelchangelog.net/tags/t1110/Recent content in T1110 on sentinelchangelog.netHugo -- 0.157.0enMon, 01 Jun 2026 04:39:34 +0000Slack Audit Solution: Enhanced Detection Logic and Alert Enrichmenthttp://sentinelchangelog.net/posts/2026-06-01-pr-14245/Mon, 01 Jun 2026 04:39:34 +0000http://sentinelchangelog.net/posts/2026-06-01-pr-14245/Slack Audit analytic rules, hunting queries, and workbook upgraded with improved KQL logic, custom alert details, and enhanced entity mappings for stronger workspace monitoring.42Crunch API Protection: Critical Migration from Legacy HTTP Collector to CCF Push Connectorhttp://sentinelchangelog.net/posts/2026-05-29-pr-14210/Fri, 29 May 2026 16:38:05 +0000http://sentinelchangelog.net/posts/2026-05-29-pr-14210/Migration addresses deprecated HTTP Data Collector API by implementing CCF OAuth2/Entra ID ingestion — deployments on legacy connector face imminent data loss.AWS Content Quality Overhaul: Standardized Detection Rules and Improved Entity Mappingshttp://sentinelchangelog.net/posts/2026-05-18-pr-14101/Mon, 18 May 2026 07:30:57 +0000http://sentinelchangelog.net/posts/2026-05-18-pr-14101/Comprehensive quality improvements to 61 AWS Analytic Rules and 35 Hunting Queries with standardized naming conventions, normalized MITRE technique mappings, and updated entity field references from legacy AccountCustomEntity to UserIdentityUserName.Flare Solution 3.1.0: Enhanced Threat Intelligence Detection Coveragehttp://sentinelchangelog.net/posts/2026-05-12-pr-14126/Tue, 12 May 2026 09:22:23 +0000http://sentinelchangelog.net/posts/2026-05-12-pr-14126/Flare Solution updates detection logic and adds three new Analytic Rules for improved threat exposure monitoring across chat platforms, lookalike domains, and underground marketplaces.Claroty: Enhanced IoT/OT Detection with Improved Alert Fidelityhttp://sentinelchangelog.net/posts/2026-05-05-pr-14107/Tue, 05 May 2026 09:58:40 +0000http://sentinelchangelog.net/posts/2026-05-05-pr-14107/Updated 9 analytic rules and 10 hunting queries with strengthened entity mapping, alert details, and MITRE coverage for OT/IoT network monitoring.Microsoft Security Copilot: Six New Detections for AI Assistant Abusehttp://sentinelchangelog.net/posts/2026-03-27-pr-13735/Fri, 27 Mar 2026 05:01:42 +0000http://sentinelchangelog.net/posts/2026-03-27-pr-13735/New analytic rules target jailbreak attempts, external access, plugin tampering, and file upload disabling - covering major AI security attack vectors.New Attack Surface Management Solution: blacklens.io Brings External Threat Visibility to Microsoft Sentinelhttp://sentinelchangelog.net/posts/2026-03-26-pr-13375/Thu, 26 Mar 2026 12:48:50 +0000http://sentinelchangelog.net/posts/2026-03-26-pr-13375/blacklens.io Attack Surface Management platform now available in Content Hub with webhook-based alert ingestion and automated incident creation.Azure Firewall: Five New IDPS Analytic Rules for Advanced Threat Detectionhttp://sentinelchangelog.net/posts/2026-02-13-pr-13591/Fri, 13 Feb 2026 08:19:01 +0000http://sentinelchangelog.net/posts/2026-02-13-pr-13591/Azure Firewall solution expanded with 5 new analytic rules targeting high/medium severity threats, DDoS attacks, web application attacks, and privilege escalation attempts.UEBA Essentials: Enhanced Multi-Cloud Detection with 6 New AWS, GCP & Okta Hunting Querieshttp://sentinelchangelog.net/posts/2025-11-12-pr-13065/Wed, 12 Nov 2025 11:17:58 +0000http://sentinelchangelog.net/posts/2025-11-12-pr-13065/Major update adds comprehensive multi-cloud anomaly detection capabilities across AWS, GCP, and Okta platforms with 6 new hunting queries.