Auto Triage of Alerts and Phishing Emails with Human in the Loop, and Case Queues greatly enhance usability and analysts' productivity

SAN JOSE, Calif.: #ai--Stellar Cyber, the cybersecurity illumination company behind the industry’s leading human-augmented autonomous SOC platform, today proudly announces the release and general availability of version 6.4.0 of its award-winning platform - marking a major milestone in the evolution of the Autonomous SOC.

With this release, Stellar Cyber delivers powerful new Autonomous SOC capabilities designed to dramatically reduce alert noise, accelerate investigations, and transform the day-to-day experience of security analysts. Version 6.4.0 shifts the SOC from reactive alert handling to AI-driven, human-augmented decision-making.

Ushering in the Human-Augmented Autonomous SOC

Security teams are overwhelmed by escalating alert volumes and increasingly complex attack techniques. Stellar Cyber 6.4.0 introduces coordinated Agentic AI reasoning embedded directly into analyst workflows - enabling AI to work with analysts, not replace them.

“Security operations have reached a tipping point. The volume and complexity of alerts are beyond what humans alone can manage. With 6.4.0, we are delivering coordinated AI reasoning that works alongside analysts - not as a black box, but as a transparent, governed, human-augmented system. Our Autonomous SOC capabilities reduce noise, preserve analyst judgment, and dramatically accelerate response without compromising data security, ” said Aimei Wei, Chief Technology Officer, Stellar Cyber.

AI Case Analysis and Summary

With the introduction of Agentic AI-based Case Summaries, Stellar Cyber elevates incident investigation from data review to intelligent reasoning. For high-severity cases, the platform automatically generates structured analysis and a detailed executive summary - ensuring that the most urgent and impactful incidents receive immediate, AI-driven attention.

High-severity incidents now can receive automatic AI-generated case summaries with structured analysis and executive-ready context. Each case clearly explains:

• What happened
• Assets at risk or involved
• Recommended response actions
• Investigation priorities

The result: explainable AI delivering machine-speed analysis while maintaining full analyst oversight - enabling faster, more confident decision-making.

Alert Auto Triage (Now Available for early adopters for SaaS)

Alert Auto Triage fundamentally changes how security teams manage alert overload. Instead of forcing analysts to spend the majority of their day sorting through false positives and low-value signals, the platform automatically evaluates alerts, enriches them with contextual intelligence, and determines likely true or false positives. Customers can expect 60–80% analyst time savings and up to 70% noise reduction, enabling their teams to focus on meaningful investigations rather than manual triage.

By automatically delivering contextual enrichment and signal validation, Alert Auto Triage ensures analysts receive cleaner, higher-confidence alerts from the start. Stellar Cyber introduces the concept of agent AI-based Verdict Signal Check (VSC) with built-in human-in-the-loop oversight providing transparency and control, while closed-loop learning continuously improves accuracy over time. The result is a more efficient SOC that responds faster, reduces burnout, and scales without requiring additional headcount.

Phishing Email Auto Triage – Now Generally Available for SaaS

Phishing email remains one of the most common and resource-draining attack vectors. Stellar Cyber’s Phishing Email Auto Triage automates the analysis of user-reported emails, reducing what once took hours to just minutes. Instead of overwhelming analysts with every reported message, the system filters out noise and escalates only high-confidence threats into actionable cases.

Case Management Reimagined: Custom Case Queues

Version 6.4.0 introduces Custom Case Queues, enabling SOC teams to align investigations with real-world workflows. Cases can be organized flexibly in many ways including :

• Escalation status
• Customer tier
• Incident type
• SLA priority

Shareable operational views improve collaboration across analysts and managers while enhancing SLA tracking and accountability.

For MSSPs and enterprise SOCs alike, this means improved workflow transparency, reduced friction, and more consistent service delivery.

Stronger Detection Capabilities

6.4.0 strengthens detection coverage in two high-risk areas:

• Web Application Exploitation:
  New SQL injection over HTTP detection identifies suspicious query patterns across observation windows - detecting both reconnaissance and potential lateral movement.
• Credential Abuse with VPN:
  New VPN logon anomaly detection identifies patterns associated with password spraying and credential stuffing, reducing attacker dwell time and strengthening early breach detection.

Modernized Dashboards & Responsive UX

Security operations demand speed and visibility. Stellar Cyber introduces a fully modernized, responsive dashboard system with:

• Grid-based layout
• Drag-and-drop resizing and reordering
• Breakpoint-aware responsiveness
• Faster dashboard creation and iteration

The enhanced UX significantly reduces dashboard creation time while improving reporting clarity and operational visibility.

Expanded Integrations & Ecosystem Growth

Security operations are only as strong as their visibility. Stellar Cyber continues to expand its Open XDR ecosystem with 7 new connectors, 23 new parsers, and 74 enhancements to existing integrations.

Transforming the Daily Life of the SOC Analyst

“This release is about transforming the daily life of the SOC analyst. We’re shifting effort away from manual sorting and repetitive triage toward high-value investigation and decision-making. Alert Auto Triage, Phishing Auto Triage, AI Case Summaries, and customizable queues & dynamic dashboards collectively reduce workload, improve consistency, and help security teams operate with greater confidence. This is a significant operational improvement - lower MTTR, cleaner signals, and more scalable SOC performance.” - Subo Guha, SVP of Product, Stellar Cyber

Availability

Stellar Cyber 6.4.0 is now available to customers. Autonomous SOC capabilities, including Alert Auto Triage and Phishing Email Auto Triage, are available for SaaS customers as add-on licenses to the XDR platform.

About Stellar Cyber

Stellar Cyber is the only AI-driven SecOps platform purpose-built for MSSPs and lean enterprise security teams. Since 2015, we’ve been illuminating the darkest corners of cybersecurity to help organizations see every threat, know what matters most, and act with speed and confidence - always with the human in the loop.

By applying the right tool to the right problem, Stellar Cyber combines machine learning to uncover hidden anomalies, agentic AI to guide responses in real time, and human-augmented decision-making where expertise is essential. The result is real-world impact: analyst productivity improved by more than 80%, false positives reduced by over 90%, and security teams free to focus on what matters.

Our award-winning, open SecOps platform unifies SIEM, NDR / OT, ITDR / UEBA, detection, investigation, triage, response, and Multi-Layer AI™ all in one platform. Stellar Cyber is trusted by one-third of the world’s top 250 MSSPs and over 14,000 organizations worldwide.

Learn more at stellarcyber.ai.

Fonte: Business Wire