Table of contents
3 min
H2 title on one or more lines.
Blog categories
SOC Insights & Other News
Product News
Detection Engineering
Speak to a Sekoia expert

Your security challenges deserve expert answers. Get a tailored demo and discover how Sekoia helps your team detect and respond to threats faster.

Get a demo

Share

Copied !
Product News
By
Mahamadou CISSE
Updated on
July 6, 2021

The new feature of Sekoia.io for the month of july

Discover how the SEKOIA.IO platform continues to reinvent itself and evolve by integrating new features (Tracking of Chinese APT groups)

Sekoia.io XDR, the eXtended Detection and Response SaaS platform aims to be as close as possible to the users of the platform, meeting their needs in a precise way, while taking into account their approach and user experience.
In this dynamic, the platform continues to reinvent itself and evolve by regularly integrating new features while improving existing features.

30 new detection rules added to the catalog!

Since the previous month, 30 new rules verified by our analysts have been added to the SEKOIA.IO XDR rules catalog. To protect you against the TOP 10 most exploded vulnerabilities of the last two years, we strongly recommend you to activate the following rules:

  • CVE-2018-13379 (Fortinet FortiOS)
  • CVE-2019-2725 (Oracle WebLogic Server)
  • CVE-2019-11510 (Pulse Secure Pulse Connect Secure (PCS))
  • CVE-2020-0688 (Microsoft Exchange Server)
  • CVE 2018-11776 (Apache Struts 2)

These vulnerabilities are exploited ahead of ransomware attacks but also cyber spying attacks to gain initial access into their victims’ information systems.

Cyber Threat Intelligence

New intelligence source: Hatching Triage ?

Our CTI database includes a new source of technical intelligence with the integration of the European sandbox Hatching Triage. This new source will reinforce our coverage of the most active malware of the moment such as Cobalt Strike, Agent tesla, LokiBot or IcedID. It provides our CTI database with IPs / domain names of Command & Control (C2) and hashes of about twenty malware. A blogpost will very soon give details of this new integration with our partner Hatching Triage, stay tuned!

Tracking of Chinese APT groups

In June, we strengthened our monitoring of C2 malware infrastructures like ShadowPad used by several threat actors attributed to China like APT41 or Winnti Group.

What’s new in the User Center ?

The invitations ✉️

The change of the invitation process makes it easier to :

  • Assigning multiple roles to users: Different roles can be assigned at the same time when sending the invitation.
  • Adding a user known to Sekoia.io: You can add existing users in other communities directly to a new one without going through the email invitation and authentication process.

Your community on Sekoia.io

The new “Your community” page now allows you to see with a single click:

  • The date of the first log-in for all community members.
  • The activation of the double authentication factor for all community members.

On our blog, you can read also:

Read our latest blog articles

June 23, 2026
Product News

Sekoia’s new identity: Designed for clarity

Sekoia has partnered with branding agency Bruno to develop a new brand identity and digital experience that reflects who we really are.

By
Sekoia Team
View more
June 11, 2026
Threat Research & Intelligence
TDR

APT28, an evolution of tradecraft

Sekoia TDR looks back at how APT28's arsenal has evolved over two decades, from its signature X-Agent implants to disposable modules, edge-device infrastructure and the first LLM-driven malware.

By
Amaury-Jacques GARCON
By
Threat Detection & Research Team
View more
June 16, 2026
Threat Research & Intelligence
TDR

Unveiling ErrTraffic: inside a growing ClickFix malware distribution framework

This report details the ErrTraffic threat and its associated ecosystem, highlighting three specific campaigns and their operators' arsenal.

By
Jérémy SCION
By
Quentin BOURGUE
By
Threat Detection & Research Team
View more