CYFIRMA Digital Risk

Solution: Cyfirma Digital Risk

Cyfirma Digital Risk Logo

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Attribute	Value
Publisher	CYFIRMA
Support Tier	Partner
Support Link	https://www.cyfirma.com/contact-us/
Categories	domains
Version	3.0.0
Author	Microsoft
First Published	2025-03-27
Solution Folder	Cyfirma Digital Risk
Marketplace	Azure Marketplace · Popularity: ⚪ Very Low (0%)

The CYFIRMA Digital Risk solution integrates with Microsoft Sentinel to provide real-time intelligence on data exposures across dark web forums, ransomware groups, public sources, and code repositories. It enables organizations to detect leaked credentials, internal documents, source code, and PII/CIIs that could be exploited by threat actors. Enriched intelligence is ingested into Microsoft Sentinel, helping security teams correlate external threats with internal activity, detect compromised accounts, and automate incident response.

Data Connectors
Tables Used
Content Items

Data Connectors

This solution provides 1 data connector(s):

CYFIRMA Digital Risk

Tables Used

This solution uses 7 table(s):

Table	Used By Connectors	Used By Content
`CyfirmaDBWMDarkWebAlerts_CL`	CYFIRMA Digital Risk	Analytics
`CyfirmaDBWMPhishingAlerts_CL`	CYFIRMA Digital Risk	Analytics
`CyfirmaDBWMRansomwareAlerts_CL`	CYFIRMA Digital Risk	Analytics
`CyfirmaSPEConfidentialFilesAlerts_CL`	CYFIRMA Digital Risk	Analytics
`CyfirmaSPEPIIAndCIIAlerts_CL`	CYFIRMA Digital Risk	Analytics
`CyfirmaSPESocialThreatAlerts_CL`	CYFIRMA Digital Risk	Analytics
`CyfirmaSPESourceCodeAlerts_CL`	CYFIRMA Digital Risk	Analytics

Content Items

This solution includes 14 content item(s):

Content Type	Count
Analytic Rules	14

Analytic Rules

Name	Severity	Tactics	Tables Used
CYFIRMA - Data Breach and Web Monitoring - Dark Web High Rule	High	CredentialAccess, Collection, Exfiltration, Impact	`CyfirmaDBWMDarkWebAlerts_CL`
CYFIRMA - Data Breach and Web Monitoring - Dark Web Medium Rule	Medium	CredentialAccess, Collection, Exfiltration, Impact	`CyfirmaDBWMDarkWebAlerts_CL`
CYFIRMA - Data Breach and Web Monitoring - Phishing Campaign Detection Rule	High	InitialAccess, Exfiltration	`CyfirmaDBWMPhishingAlerts_CL`
CYFIRMA - Data Breach and Web Monitoring - Phishing Campaign Detection Rule	Medium	InitialAccess, Exfiltration	`CyfirmaDBWMPhishingAlerts_CL`
CYFIRMA - Data Breach and Web Monitoring - Ransomware Exposure Detected Rule	High	InitialAccess, Exfiltration	`CyfirmaDBWMRansomwareAlerts_CL`
CYFIRMA - Data Breach and Web Monitoring - Ransomware Exposure Detected Rule	Medium	InitialAccess, Exfiltration	`CyfirmaDBWMRansomwareAlerts_CL`
CYFIRMA - Social and Public Exposure - Social Media Threats Activity Detected Rule	High	ResourceDevelopment, Reconnaissance, InitialAccess, Impact	`CyfirmaSPESocialThreatAlerts_CL`
CYFIRMA - Social and Public Exposure - Social Media Threats Activity Detected Rule	Medium	ResourceDevelopment, Reconnaissance, InitialAccess, Impact	`CyfirmaSPESocialThreatAlerts_CL`
CYFIRMA - Social and Public Exposure - Confidential Files Information Exposure Rule	High	InitialAccess, Exfiltration, Collection, Reconnaissance	`CyfirmaSPEConfidentialFilesAlerts_CL`
CYFIRMA - Social and Public Exposure - Confidential Files Information Exposure Rule	Medium	InitialAccess, Exfiltration, Collection, Reconnaissance	`CyfirmaSPEConfidentialFilesAlerts_CL`
CYFIRMA - Social and Public Exposure - Exposure of PII/CII in Public Domain Rule	High	InitialAccess, Exfiltration, Collection, CredentialAccess	`CyfirmaSPEPIIAndCIIAlerts_CL`
CYFIRMA - Social and Public Exposure - Exposure of PII/CII in Public Domain Rule	Medium	InitialAccess, Exfiltration, Collection, CredentialAccess	`CyfirmaSPEPIIAndCIIAlerts_CL`
CYFIRMA - Social and Public Exposure - Source Code Exposure on Public Repositories Rule	High	ResourceDevelopment, CredentialAccess, Discovery	`CyfirmaSPESourceCodeAlerts_CL`
CYFIRMA - Social and Public Exposure - Source Code Exposure on Public Repositories Rule	Medium	ResourceDevelopment, CredentialAccess, Discovery	`CyfirmaSPESourceCodeAlerts_CL`

Release Notes

Version	Date Modified (DD-MM-YYYY)	Change History
3.0.3	04-09-2025	Bugs fixes to CCF Data Connector.
3.0.2	24-07-2025	Minor changes and New analytics rules added to CCF Data Connector.
3.0.1	17-06-2025	Minor changes to CCF Data Connector.
3.0.0	14-04-2025	Initial Solution Release.