Recorded Future: IOC Enrichment Noise Reduction via Risk Score Thresholding

Added configurable RiskScoreThreshold parameter to prevent low-risk IOCs from generating incident comments. Read More →

Cyren-SentinelOne Playbook: Credential Parameter Security Compliance Fix

Fixed Policy 300.4.1.1 violation by securing credential parameters in the Cyren-SentinelOne threat intelligence integration Playbook. Read More →

Microsoft Threat Intelligence: Detection Logic Optimization Risks in Domain/URL Mapping Rule

Analytic rule optimization introduces potential detection gaps by reordering deduplication before indicator validity checks. Read More →

IPinfo Connectors: Azure Functions Dependency Fix for Linux Runtime

All IPinfo connector Azure Function packages rebuilt to resolve dependency issues with Linux runtime. Read More →

Cyren Threat Intelligence: SentinelOne IOC Automation Solution Deployed

New Content Hub solution automates IOC ingestion from Cyren CCF feeds (IP reputation and malware URLs) into SentinelOne for automated threat detection and response. Read More →

GreyNoise Threat Intelligence: SDK Update Addresses Function App Runtime Issues

Updated GreyNoise Python SDK to v3.0.3, fixed module mismatches, and bumped Azure Functions runtime to resolve connector stability issues. Read More →

CrowdStrike Adversary Intelligence Connector: Function App Deployment Fix

Version constraint fix restores Function App deployment after Azure Functions runtime compatibility issue. Read More →

New Censys Solution: Attack Surface Intelligence and Entity Enrichment

Adds comprehensive playbook automation for Censys threat intelligence enrichment, providing IP/domain/certificate context during incident investigation. Read More →

Threat Intelligence: Duo Security IP Detection Updated for ASIM Schema Compliance

IPEntity_DuoSecurity detection migrated from legacy DuoSecurityAuthentication_CL table to normalized CiscoDuo ASIM schema. Read More →

Cyren Threat Intelligence: Flexible Deployment with Optional JWT Tokens

Cyren threat intelligence connectors now support conditional deployment — customers can install either IP reputation or malware URL feeds individually based on their subscription. Read More →

Visa Threat Intelligence Connector: Template Consistency Fix Addresses Installation Issues

Corrects solution name and ID mismatches in Visa TI connector templates that were causing installation failures. Read More →

IPinfo Solution: Three New Data Connectors with Enhanced OAuth Authentication

IPinfo v3.0.3 adds Core, Plus, and Residential Proxy data connectors with robust Azure AD OAuth exception handling to prevent authentication blind spots. Read More →

Recorded Future Playbooks: Threat Intelligence Integration Discontinued Due to Microsoft API Deprecation

Microsoft has deprecated the Graph Security tiIndicators API, rendering Recorded Future’s automated threat intelligence ingestion playbooks non-functional. Read More →

Feedly Threat Intelligence: Migration from Azure Functions to Native CCF Connector

Modernizes Feedly threat intelligence ingestion by removing Azure Function dependencies and migrating to native Sentinel CCF polling for IoC feeds. Read More →

CTM360 HackerView: Connector Ingestion Restored After Complete Deployment Failure

CTM360 HackerView Function App connector was completely broken due to backup flag logic errors, preventing all threat intelligence ingestion until this fix. Read More →

Cyren Threat Intelligence: Partner Center Compliance Fix and Version Alignment

Compliance update removes credential scanner violations from securestring parameters and aligns all content versions to 3.0.3. Read More →

IPinfo: Multi-Workspace Support and Function App Deployment Reliability Improvements

Comprehensive update to 17 IPinfo connectors enhancing deployment reliability with runtime pinning, dependency fixes, and multi-workspace DCR support. Read More →

Cyren Threat Intelligence: Critical Fix for 1,535:1 Duplicate Data Ingestion

Configuration updates eliminate massive duplicate indicator ingestion caused by small page sizes and frequent polling intervals. Read More →

Threat Intelligence: URL IOC Detection Added for Web Session Monitoring

New Analytic Rule enables detection of malicious URLs from threat feeds in web traffic, closing coverage gap for URL-based indicators. Read More →

Visa Threat Intelligence Solution: Initial Package Release with IOC Detection Rules

New Visa Threat Intelligence (VTI) solution providing IOC feeds via DCR connector with high-severity detection rules for domains and file hashes. Read More →