September 30, 2023—The Observed Attack Techniques API has been updated to support container-related information such as threats or
activities. SIEM apps and customers can now utilize the Observed Attack Techniques
Pipeline endpoints to export events that trigger filters or container events. This
enables threat and activity investigation related to container security within the
exported events.
For more information about the Observed Attack Techniques API, see https://automation.trendmicro.com/xdr/api-v3#tag/Observed-Attack-Techniques-Pipeline