Merge pull request #293020 from limwainstein/url-parameters-whats-new

What's new for new URL parameters detail in alerts

Author: AnnaMHuff

articles/defender-for-iot/organizations/media/whats-new/url-parameters.png

@@ -37,8 +37,10 @@ Cloud features may be dependent on a specific sensor version. Such features are
 
 | Version / Patch |  Release date | Scope     | Supported until |
 | ------- |  ------------ | ----------- | ------------------- |
+| **25.1** | | | |
+| 25.1.0  |03/2025 | Major |02/2026 |
 | **24.1** | | | |
-| 24.1.9  |2/2025 | Minor |1/2026 |
+| 24.1.9  |03/2025 | Minor |02/2026 |
 | 24.1.8  |12/2024 | Minor |12/2025 |
 | 24.1.7  |12/2024 | Minor |12/2025 |
 | 24.1.6  |11/2024 | Minor |12/2025 |
@@ -92,13 +94,26 @@ Version numbers are listed only in this article and in the [What's new in Micros
 
 To understand whether a feature is supported in your sensor version, check the relevant version section below and its listed features.
 
+## Versions 25.1.x
+
+### Version 25.1.0
+
+**Release date**: 03/2025
+
+**Supported until**: 02/2026
+
+This version includes the following updates and enhancements:
+
+- ["Unauthorized Internet Connectivity Detected" alert now includes URL information](whats-new.md#unauthorized-internet-connectivity-detected-alert-now-includes-url-information)
+- [Improved RDP brute force detection](whats-new.md#improved-rdp-brute-force-detection)
+
 ## Versions 24.1.x
 
 ### 24.1.9
 
-**Release date**: 2/202
+**Release date**: 03/2025
 
-**Supported until**: 1/2026
+**Supported until**: 02/2026
 
 This version includes bug fixes for stability improvements.
 

articles/defender-for-iot/organizations/release-notes.md

@@ -22,21 +22,27 @@ Features released earlier than nine months ago are described in the [What's new
 
 The legacy on-premises management console won't be available for download after **January 1st, 2025**. We recommend transitioning to the new architecture using the full spectrum of on-premises and cloud APIs before this date. For more information, see [on-premises management console retirement](ot-deploy/on-premises-management-console-retirement.md).
 
-## February 2025
+## March 2025
 
 |Service area  |Updates  |
 |---------|---------|
-| **OT networks** | - [Improved RDP Brute Force Detection](#improved-rdp-brute-force-detection)|
+| **OT networks** | - ["Unauthorized Internet Connectivity Detected" alert now includes URL information](#unauthorized-internet-connectivity-detected-alert-now-includes-url-information)<br>- [Improved RDP Brute Force Detection](#improved-rdp-brute-force-detection) |
 
-### Improved RDP Brute Force Detection
+### "Unauthorized Internet Connectivity Detected" alert now includes URL information
 
-The “Excessive Number of Sessions” alert now includes support by default to an RDP port, enhancing visibility into potential brute-force attacks and unauthorized access attempts.
+The "Unauthorized Internet Connectivity Detected" alert details now includes the URL from which the suspicious connection initiated, helping SOC analysts assess and respond to incidents more effectively.
+
+:::image type="content" source="media/whats-new/url-parameters.png" alt-text="Screenshot of URL information in alert details." lightbox="media/whats-new/url-parameters.png":::
+
+### Improved RDP brute force detection
+
+The “Excessive Number of Sessions” alert now includes support by default to a remote desktop protocol (RDP) port, enhancing visibility into potential brute-force attacks and unauthorized access attempts.
 
 ## January 2025
 
 |Service area  |Updates  |
 |---------|---------|
-| **OT networks** | - [Aggregating multiple alerts violations with the same parameters](#aggregating-multiple-alerts-violations-with-the-same-parameters)|
+| **OT networks** | [Aggregating multiple alerts violations with the same parameters](#aggregating-multiple-alerts-violations-with-the-same-parameters) |
 
 ### Aggregating multiple alerts violations with the same parameters