Visualizing Sensitive File Discovery in Google SecOps with Uncoder AI’s Decision Tree
In today’s hybrid environments, legitimate tools like Notepad can be silently used to view or stage sensitive data such as…
Threats
How Full Summary in Uncoder AI Supercharges Kusto Query Analysis for Threat Hunters
Working with Microsoft Sentinel often means dissecting complex Kusto queries, especially when tracking subtle attacker behavior. These queries can include…
Investigating Curl-Based TOR Proxy Access with Uncoder AI and SentinelOne Query Language
Detecting stealthy command-line activity that may indicate dark web access or anonymized traffic is a growing challenge for security teams.…
Billbug Attack Detection: China-Linked Espionage Actors Target Southeast Asian Organizations
ESET’s Q2-Q3 2024 APT Activity Report highlights China-affiliated groups leading global APT operations, with campaigns aimed at intelligence gathering being…
Accelerating Threat Detection with Uncoder AI’s “Short AI-generated Summary”
In the world of Security Operations, speed and clarity are everything. When analysts sift through complex detection logic—especially in extensive…
Making Splunk Detection Work Faster with Uncoder AI’s Full Summary
Modern SOC teams dealing with Splunk Detections need to process large volumes of detection logic written in SPL. The challenge?…
CVE-2025-30406 Detection: Critical RCE Vulnerability in Gladinet CentreStack & Triofox Under Active Exploitation
A critical vulnerability in the widely used Gladinet CentreStack and Triofox enterprise file sharing and remote access platforms has surfaced…
CVE-2025-29824 Vulnerability: Exploitation of a Windows CLFS Zero-Day Could Trigger Ransomware Attacks
Hot on the heels of the CVE-2025-1449 disclosure, a vulnerability in Rockwell Automation software, another critical security issue affecting widely…
UAC-0226 Attack Detection: New Cyber-Espionage Campaign Targeting Ukrainian Innovation Hubs and Government Entities with GIFTEDCROOK Stealer
Throughout March 2025, defenders observed increasing cyber-espionage activity by the UAC-0219 hacking group targeting Ukrainian critical sectors WRECKSTEEL malware. In…
Seashell Blizzard Attack Detection: A Long-Running Cyber-Espionage “BadPilot” Campaign by russian-linked Hacking Group
A nefarious russia’s APT group Seashell Blizzard also known as APT44 has been waging global cyber campaigns since at least…