Elastic Security 8.10 reveals detection gaps, contextualizes alerts, extends CSPM to GCP

Elastic Security 8.10 introduces several enhancements aimed at improving detection and response capabilities, including a MITRE ATT&CK-aligned detection coverage view and richer alert contextualization to accelerate investigations. The release extends cloud security posture management (CSPM) to Google Cloud Platform, offering a comprehensive view across multi-cloud environments, while automating CSPM onboarding for AWS accounts to simplify cloud infrastructure management. The integration of Elastic AI Assistant, now in general availability, assists analysts by synthesizing alert details and recommending investigative actions. Analysts benefit from new visualizations and an expanded Alert sidebar that provides detailed insights, such as user and host risk scoring and threat intelligence correlations, aiding in faster and more effective response to potential threats.