March 31, 2026—Attack Path Prediction now includes additional internal detection rules
for MITRE ATT&CK Initial Access techniques. The additional rules improve your visibility
into early-stage attack paths.
New rules cover the following scenarios:
-
Valid Accounts
-
Account Manipulation
-
Brute Force
Detections using the added rules help you identify common entry-point risk events
such as unusual sign-in patterns, suspicious group membership changes, and password
guessing or spraying activities. The result is better detection and easier investigation
of potential compromise paths that originate from identity-based attacks.
For more information, see how to investigate and remediate attack paths in Attack Path Prediction.