Stellar Cyber Advances Autonomous SOC with AI-Native Workflows

Security operations teams are overwhelmed by alerts, fragmented tools and the constant pressure to investigate faster with fewer analysts. Stellar Cyber addresses this challenge with its latest 6.5 and 6.6 releases, advancing an AI-driven, human-augmented SOC vision that helps MSSPs and lean enterprise security teams detect threats faster, investigate with more context and onboard new data without friction.

What was announced

Stellar Cyber announced continued momentum across Stellar Cyber 6.5 and 6.6. Together, the releases deliver governed AI workflows, expanded Auto Triage visibility, sharper detections across identity, cloud and network, stronger platform health monitoring, broader integrations and faster self-service data onboarding.

Version 6.5 introduced Early Access support for the Stellar Cyber MCP Server, giving approved AI clients a governed way to connect to the platform through the Model Context Protocol with case context, tenant awareness and access controls. Version 6.6 extends Auto Triage with verdict visibility in the Alert Table and Threat Hunting views, filterable verdict columns and a response action panel on the Auto Triage alert page.

Customers and partners do not need more alerts or more disconnected tools. They need a platform that helps them detect faster, investigate with more context, bring new data online without friction, and act with confidence

Why this matters

For CIOs, CISOs and IT directors, the releases address persistent SOC pain points: alert fatigue, slow investigation cycles, integration friction and limited analyst productivity. Stellar Cyber reports analyst productivity improved by more than 80% and false positives reduced by over 90% on its platform. By combining machine learning, agentic AI and human-augmented decision-making under a single license, Stellar Cyber gives procurement and security leaders a unified AI-native SecOps approach instead of a stack of disconnected tools.

Technical details

• AI-Native SOC Workflows: Early Access Stellar Cyber MCP Server for governed AI client access via Model Context Protocol.
• Auto Triage Visibility: Verdict columns in Alert Table and Threat Hunting, plus response action panel on Auto Triage alert page.
• Sharper Detections: Successful Login After Brute Force, AWS Config detections, location-based fidelity scoring, customizable suppression for Impossible Travel anomalies, ASN enrichment and Microsoft Graph Security API integrations.
• Operations and Health: Dashboard Hub, temporary alert filters, ATH rule import/export, System Action Center health monitoring, license enforcement and usage notification APIs.
• Data Onboarding: Parser Studio self-service workspace, selective parser port activation, Liongard, Ironscales and Check Point Smart-1 Cloud response actions, API token authentication for the Universal Webhook Responder.
• Sensor and NDR: Azure VTAP documentation, SMB session IDs, NFS file assembly for malware inspection, expanded Linux sensor support, DPI protocol updates, Suricata 8.0.1 and sensor security hardening.

Softprom and Stellar Cyber

Softprom is the official distributor of Stellar Cyber. Enterprise security teams and MSSPs can engage Softprom to evaluate, deploy and scale the Stellar Cyber AI-native SecOps platform, including SIEM, NDR, ITDR/UEBA and Multi-Layer AI capabilities under a single license.

This content was prepared as part of the Softprom DistriFlow project — an automated system for monitoring and adapting vendor news. Original source: original article.