Enterprise Security Content Updates v 1.0.45 included the following enhancements.
Updated Analytic Stories:
- Added new searches "Abnormally High AWS Instances Launched by User - MLTK detection" and "Abnormally High AWS Instances Terminated by User - MLTK detection" to the "Suspicious AWS EC2 Activities" Analytic Story
- Added new search "Abnormally High AWS Instances Launched by User - MLTK detection" to the "Cloud Cryptomining" Analytic Story
Fixed issues:
- CRL-1493 ESCU Fraud Searches Are Mislabeled
- CRL-1697 Added: Cloud Compute Instance Created With Previously Unseen Image detection to Cloud Cryptomining story