We are pleased to announce the upcoming release of new global detections for Palo Alto and Microsoft 365 integrations to provide additional insights into network activity and privileged access event.

Palo Alto Firewall Detections

• External CLI Login Detection: Detects external command‑line access to firewall devices that may indicate unauthorized administrative activity.
• External SMB Threat Detection: Detects external SMB‑related traffic that may indicate exploitation or malicious file‑based activity.
• ML‑Virus Detection: Detects potential malware activity observed in firewall traffic.
• Hacktool Traffic Detection: Detects network traffic associated with offensive security or hacking tools.
• Cryptominer Traffic Detection: Detects traffic indicative of cryptocurrency mining activity.

Microsoft 365 Detections

• Global Administrator Privileges Assigned: Detects the assignment of Global Administrator privileges in Microsoft 365 environments.
• Failed Attempt to Grant Global Administrator Privileges: Detects failed attempts to assign Global Administrator privileges.

These capabilities help teams identify malicious behavior faster, prioritize high‑risk events more effectively, and accelerate response across both cloud and on‑premises environments.

For full details please be sure to review Adlumin Release Notes documentation.