How to set up notifications on threats

Continuous Monitoring (CM) must be enabled for your subscription

The CM ruleset builder lets you select Threat Protection RTIs you want to be alerted on as part of Vulnerability Criteria. For example, use this ruleset to be alerted on new vulnerabilities with severity 5 AND real-time threat indicator for zero day threats.

Sample ruleset in CM

Sample ruleset to get alerts for real time threat indicators.