ANY.RUN Expands Detection Capabilities With AI Sigma Rules, Industry Threat Landscape & 1,700+ New Detections

2026-01-05 12:16:13

(MENAFN- EIN Presswire) EINPresswire/ -- ANY, a leading provider of interactive malware analysis and threat intelligence solutions, announced a new set of product updates closing out December 2025, aimed at helping security operations leaders detect threats faster, reduce alert noise, and align response efforts with real business exposure.

Turning Confirmed Threats into Reusable Detections

The AI Sigma Rules feature in ANY's Sandbox automatically converts confirmed sandbox detections into deployable Sigma rules. Built from observed process, file, and network activity, the rules can be exported to SIEM and SOAR platforms within seconds, enabling detections created during one investigation to be reused across future attacks.

Industry- and Region-Specific Threat Context for Faster Prioritization

ANY's TI Lookup adds industry and geographic context to indicators, showing which sectors and regions are actively targeted and where related activity is trending. Based on live telemetry from more than 15,000 organizations, it supports faster prioritization, clearer triage, and improved MTTD by aligning threat intelligence with real exposure.

Explore how these updates support faster, more focused security operations in the full December release notes on the ANY blog.

Expanded Threat Coverage with 1,785+ New Detections

In December, ANY added 1,785 new detections, including 86 behavioral signatures, 13 YARA rules, and 1,686 Suricata rules. The update improves coverage of phishing, malware, and evasive network activity while reducing false positives across complex attack chains, giving security leaders clearer visibility and faster, more confident prioritization.

About ANY

ANY supports security operations at more than 15,000 organizations, helping teams detect, analyze, and respond to threats faster through interactive sandboxing and real-time threat intelligence.

The solution combines live malware analysis across Windows, Linux, and Android with Threat Intelligence Lookup and Threat Intelligence Feeds, giving SOCs a single workflow to reduce noise, shorten detection and response times, and focus on threats that matter to the business.

MENAFN05012026003118003196ID1110557764

Legal Disclaimer:
MENAFN provides the information “as is” without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the provider above.