{"id":25819,"date":"2019-02-28T18:00:14","date_gmt":"2019-02-28T18:00:14","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/"},"modified":"2019-02-28T18:00:14","modified_gmt":"2019-02-28T18:00:14","slug":"in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/","title":{"rendered":"In the cloud, things aren’t always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel"},"content":{"rendered":"

RSA<\/strong> Microsoft has wheeled out two new enterprise security tools \u2013 Azure Sentinel, a cloud-based SIEM, and Microsoft Threat Experts, an infosec advice-as-a-service bundled with a panic button.<\/p>\n

The two services are part of Redmond’s ongoing invasion of the cloud security market<\/a>. It will be showing off the technology at the RSA Conference in San Francisco next week.<\/p>\n

Ann Johnson, Microsoft’s cybersecurity solutions veep, described Azure Sentinel as the “first native SIEM within a major cloud platform”.<\/p>\n

Azure Sentinel customers are exhorted by Microsoft to marvel at “nearly limitless cloud speed and scale”, assuming the public cloud service and things hanging off it haven’t gone for an unscheduled nap, as happens from time to time.<\/p>\n

The hackneyed message from Johnson is for businesses to “invest your time in security and not servers”.<\/p>\n

“Azure Sentinel supports open standards such as Common Event Format (CEF) and broad partner connections, including… Check Point, Cisco, F5, Fortinet, Palo Alto and Symantec, as well as broader ecosystem partners such as ServiceNow.”<\/p>\n

Press the big red Microsoft panic button<\/span><\/h3>\n

Johnson also revealed Microsoft Threat Experts, another aaS product that appears to target businesses without an extensive in-house security presence or capability. It was presented as “a new service within Windows Defender ATP which provides managed hunting to extend the capability of your security operations centre team”.<\/p>\n

You give the keys to your castle over to Microsoft’s security folk, who will then “proactively hunt over your anonymized security data for the most important threats, such as human adversary intrusions, hands-on-keyboard attacks, and advanced attacks like cyberespionage” in Johnson’s words.<\/p>\n

\"Business<\/p>\n

Microsoft flings open Azure Functions to Java workloads<\/h2>\n

READ MORE<\/span><\/a><\/div>\n

This is security-as-a-service comes with a panic button for when you just don’t know the answer to a burning infosec question yourself. Thanks to Redmond’s “Ask a Threat Expert”, you can “submit questions directly” to MS security bods via the Windows Defender ATP console.<\/p>\n

Tom Kranz, head of cyber labs at British tech consultancy 6point6 and a one-time enterprise security architect, was not impressed by the announcement. He told The Register<\/em>:<\/p>\n

\u201cMicrosoft Azure Sentinel continues a worrying process of cloud providers eating their partners\u2019 lunch, which is neither good for the industry nor for customers. Azure Operations Management Suite and Security Centre lacked the event correlation and automation that market leaders like Splunk and Alienvault know is needed for a SIEM to be anything other than an irritating source of noise.”<\/p>\n

Kranz did concede that Sentinel “may fill that ‘just good enough’ gap between basic tools like OMS and the full-fat products like Splunk.”<\/p>\n

To join the public preview of Microsoft Threat Experts, apply in the Windows Defender ATP settings, or if Azure Sentinel floats your corporate boat, there’s more about it on Microsoft’s website<\/a>. \u00ae<\/p>\n

Sponsored:<\/span> Cloud Security: From Start Point to End Point<\/a><\/p>\n

READ MORE HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

And ‘ask a Redmond security bod’ panic button for Windows Defender ATP customers RSA\u00a0 Microsoft has wheeled out two new enterprise security tools \u2013 Azure Sentinel, a cloud-based SIEM, and Microsoft Threat Experts, an infosec advice-as-a-service bundled with a panic button.\u2026 READ MORE HERE…<\/p>\n","protected":false},"author":2,"featured_media":25820,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-25819","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"\nIn the cloud, things aren't always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"In the cloud, things aren't always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-02-28T18:00:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"In the cloud, things aren’t always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel\",\"datePublished\":\"2019-02-28T18:00:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/\"},\"wordCount\":493,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/\",\"name\":\"In the cloud, things aren't always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg\",\"datePublished\":\"2019-02-28T18:00:14+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"In the cloud, things aren’t always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"In the cloud, things aren't always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/","og_locale":"en_US","og_type":"article","og_title":"In the cloud, things aren't always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-02-28T18:00:14+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"In the cloud, things aren’t always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel","datePublished":"2019-02-28T18:00:14+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/"},"wordCount":493,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/","url":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/","name":"In the cloud, things aren't always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg","datePublished":"2019-02-28T18:00:14+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel.jpg","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/in-the-cloud-things-arent-always-what-they-siem-microsoft-rolls-out-ai-driven-azure-sentinel\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"In the cloud, things aren’t always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25819","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=25819"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25819\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/25820"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=25819"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=25819"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=25819"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}