Visualizing Insider Threat Detection with Uncoder AI’s Decision Tree for SentinelOne Queries
Detecting insider access to sensitive data—like password documents—is a challenge for even mature SOC teams, especially when the activity is…
Threats
Visualizing Sensitive File Discovery in Google SecOps with Uncoder AI’s Decision Tree
In today’s hybrid environments, legitimate tools like Notepad can be silently used to view or stage sensitive data such as…
How Full Summary in Uncoder AI Supercharges Kusto Query Analysis for Threat Hunters
Working with Microsoft Sentinel often means dissecting complex Kusto queries, especially when tracking subtle attacker behavior. These queries can include…
Investigating Curl-Based TOR Proxy Access with Uncoder AI and SentinelOne Query Language
Detecting stealthy command-line activity that may indicate dark web access or anonymized traffic is a growing challenge for security teams.…
Billbug Attack Detection: China-Linked Espionage Actors Target Southeast Asian Organizations
ESET’s Q2-Q3 2024 APT Activity Report highlights China-affiliated groups leading global APT operations, with campaigns aimed at intelligence gathering being…
Accelerating Threat Detection with Uncoder AI’s “Short AI-generated Summary”
In the world of Security Operations, speed and clarity are everything. When analysts sift through complex detection logic—especially in extensive…
Making Splunk Detection Work Faster with Uncoder AI’s Full Summary
Modern SOC teams dealing with Splunk Detections need to process large volumes of detection logic written in SPL. The challenge?…
CVE-2025-30406 Detection: Critical RCE Vulnerability in Gladinet CentreStack & Triofox Under Active Exploitation
A critical vulnerability in the widely used Gladinet CentreStack and Triofox enterprise file sharing and remote access platforms has surfaced…
CVE-2025-29824 Vulnerability: Exploitation of a Windows CLFS Zero-Day Could Trigger Ransomware Attacks
Hot on the heels of the CVE-2025-1449 disclosure, a vulnerability in Rockwell Automation software, another critical security issue affecting widely…
UAC-0226 Attack Detection: New Cyber-Espionage Campaign Targeting Ukrainian Innovation Hubs and Government Entities with GIFTEDCROOK Stealer
Throughout March 2025, defenders observed increasing cyber-espionage activity by the UAC-0219 hacking group targeting Ukrainian critical sectors WRECKSTEEL malware. In…