HYAS Insight R25.8
Release # | R25.8 |
|---|---|
Date |
What’s New in HYAS Insight!
Expanded Threat Context: New OSINT Data NEW
HYAS Insight now includes vetted open-source threat intelligence for domains, IPs, and file hashes. This data is displayed in a new OSINT tab in the UI and is also available via API for eligible packages. The OSINT data is commercially distributable, ensuring organizations can confidently incorporate it into their investigations and reporting.
Benefits
Broader Threat Context – Enrich investigations with additional open-source intelligence on observed threat activity.
Commercially Safe Data – All displayed data is cleared for commercial distribution, avoiding licensing conflicts.
Integrated Access – Access OSINT directly in HYAS Insight via the new UI tab or API, streamlining analysis workflows.
Enhanced Verdicts with Richer Intelligence IMPROVEMENT
HYAS Insight verdicts now leverage a broader range of threat intelligence, combining proprietary data sources with newly available open-source intelligence. Verdict calculations are based on multiple contributing factors, including malware associations, command-and-control (C2) activity, host posture indicators, and vetted open-source threat data. Each factor is scored according to severity, recency, and confidence, and these scores are combined to produce a single, easy-to-understand verdict of Benign, Suspicious, or Malicious.
Verdict evidence has also been improved to provide clearer context. Evidence strings summarize the major contributing factors (e.g., “Malware,” “C2 Activity,” “OSINT – Phishing”) and are presented in a standardized and deduplicated format for easier interpretation.
This enhancement applies to domains, IPv4, and IPv6 addresses across both the UI and API. In the UI, users see the verdict and evidence; in the API, both the detailed scores and verdict values are available for deeper integration.
Benefits
More Accurate Verdicts – Multiple intelligence sources now inform each verdict, improving reliability.
Clearer Evidence – Concise evidence strings explain why verdicts are Benign, Suspicious, or Malicious.
Broader Threat Context – Newly integrated open-source data adds investigative depth to existing proprietary signals.
Verdicts Now Included in Classic Package IMPROVEMENT
HYAS Insight Classic package users now have access to verdicts for domains and IPs at no additional charge. Verdicts indicate whether an indicator is Benign, Suspicious, or Malicious and are visible in the UI; API access is also supported where enabled. Other data types, tags, and tabs remain unchanged and continue to be reserved for higher-tier packages.
Benefits
Immediate Threat Insight – Verdicts now available in Classic at no extra cost.
Supports Packaging Strategy – Differentiates Classic from Basic while maintaining clear tier boundaries.
UI and API Availability – Verdicts shown in UI and accessible via API where enabled.
Increased Results Per Page IMPROVEMENT
You can now view more results per page across several key UI tables. We’ve expanded the pagination options to 100, 500, and 1000 items per page, with 100 as the default setting.
Benefits
Faster data scanning: Reduce clicks and screen loads by viewing larger data sets in one view.
Improved sorting experience: Larger result sets make sorting more effective and comprehensive.
Consistent pagination: Aligns user experience across Search, Alerts, Infra Analysis, and WHOIS results.
Updated Spatial Intelligence Instructions Display IMPROVEMENT
Instructions for Spatial Intelligence map queries are now consolidated under the “?” help icon. The outdated instructional text previously displayed in the top-left corner of the map has been removed to reduce clutter and maintain a consistent UI pattern.
Benefits
Cleaner Interface – Removes outdated on-map instructional text.
Consistent Access to Help – Instructions now always available via the “?” icon.
Improved Focus – Reduces visual noise, allowing analysts to concentrate on spatial data.