SumoLogic · amee-sumo · Feb 24, 2026 · Feb 24, 2026 · Feb 24, 2026 · Feb 24, 2026
@@ -0,0 +1,46 @@
+---
+title: Apps, Solutions, and Collection Integrations - February Release
+image: https://assets-www.sumologic.com/company-logos/_800x418_crop_center-center_82_none/SumoLogic_Preview_600x600.jpg?mtime=1617040082
+keywords:
+  - release-note
+  - february
+hide_table_of_contents: true    
+---
+<!--
+#### New release
+
+We’re excited to announce the release of the following new apps for Sumo Logic.
+
+- **Amazon SageMaker**. The Sumo Logic app for Amazon SageMaker helps you centrally monitor Amazon SageMaker logs and performance metrics, enabling faster troubleshooting, better visibility into ML workloads, and improved reliability of model training and deployment.
+- **Azure Firewall**. The Sumo Logic app for Azure Firewall provides a centralized visibility into Azure Firewall health, traffic, and security events—enabling faster threat detection, policy validation, and proactive protection of cloud workloads.
+- **LiteLLM**. The Sumo Logic app for LiteLLM provides a centralized visibility into LiteLLM usage, performance, reliability, and cost, helping teams monitor latency, tokens, spend, failures, and fallbacks across multiple LLM providers to keep AI workloads efficient and reliable.
+- **Apache Hadoop - OpenTelemetry**. The Sumo Logic OpenTelemetry app for Apache Hadoop provides an end-to-end observability into Apache Hadoop clusters by correlating logs and metrics to monitor health, performance, and resource usage, enabling faster troubleshooting, capacity planning, and stable operations.
+-->
+#### Enhancements
+
+We’re excited to announce new enhancements to the following Sumo Logic apps, designed to improve visibility, usability, and troubleshooting capabilities while helping you gain deeper insights and operate more efficiently.
+
+- **Azure Security apps**. Updated the following Microsoft Azure Security apps to refresh sample queries, localize dashboard images, and add monitor alerts.
+    - **Azure Security - Microsoft Defender for Endpoint**. The monitor alerts help you identify and respond to critical endpoint threats by alerting on high-severity incidents, suspicious devices, and activity from embargoed or high-risk locations. [Learn more](/docs/integrations/microsoft-azure/microsoft-defender-for-endpoint/#azure-security---microsoft-defender-for-endpoint-alerts).
+    - **Azure Security - Microsoft Defender for Identity**. The monitor alerts help you detect and prioritize identity-based threats by alerting on high-severity incidents, embargoed locations, and suspicious devices to enable faster investigation and response. [Learn more](/docs/integrations/microsoft-azure/azure-security-microsoft-defender-for-identity/#azure-security---microsoft-defender-for-identity-alerts).
+    - **Azure Security - Microsoft Defender for Office 365**. The monitor alerts help you detect and respond to high-risk email and collaboration threats by alerting on embargoed locations, high-severity incidents, and suspicious device activity in Microsoft Defender for Office 365. [Learn more](/docs/integrations/microsoft-azure/azure-security-microsoft-defender-for-office-365/#azure-security---microsoft-defender-for-office-365-alerts).
+    - **Microsoft Graph Security**. The monitor alerts help you detect and prioritize critical security threats by alerting on high-severity incidents, risky devices, and suspicious activity from embargoed or high-risk locations using Microsoft Graph Security signals. [Learn more](/docs/integrations/saas-cloud/microsoft-graph-security-v2/#microsoft-graph-security-alerts).
+- **Data Volume**. Added Data Volume monitor alerts that help you track log ingestion, detect usage spikes or data gaps, and prevent unexpected credit overages by alerting you to abnormal volume patterns and plan-limit risks in real time. [Learn more](/docs/integrations/sumo-apps/data-volume/#data-volume-app-alerts).
+- **Enterprise Audit apps**. Updated the following Enterprise Audit apps to add monitor alerts.
+    - **Enterprise Audit - Collector & Data Forwarding Management**. The monitor alerts help you detect and respond to critical collector and data-forwarding issues, ensuring reliable data ingestion, secure configurations, and uninterrupted operations. [Learn more](/docs/integrations/sumo-apps/enterprise-audit/#enterprise-audit---collector-and-data-forwarding-management-app).
+    - **Enterprise Audit - Content Management**. The monitor alerts help you maintain security and compliance by alerting when content is made public or accessed publicly, enabling quick detection of unintended exposure and potential data risks. [Learn more](/docs/integrations/sumo-apps/enterprise-audit/#enterprise-audit---content-management-alerts).
+    - **Enterprise Audit – Cloud SIEM**. The monitor alerts help you detect and respond to high-risk security threats and SLA breaches by automatically alerting on critical Cloud SIEM activities like brute-force attacks, malware, anomalous access, and delayed detection or remediation. [Learn more](/docs/integrations/sumo-apps/cse/#enterprise-audit---cloud-siem-alerts).
+    - **Enterprise Audit - Security Management**. The monitor alerts help you ensure regulatory compliance and reduce risk by detecting and alerting on security events originating from embargoed or sanctioned geographic locations. [Learn more](/docs/integrations/sumo-apps/enterprise-audit/#enterprise-audit---security-management-alerts).
+    - **Enterprise Audit - User & Role Management**. The monitor alerts help you enhance security and compliance by alerting on user or role management activities originating from embargoed or high-risk geographic locations, enabling faster detection of suspicious access. [Learn more](/docs/integrations/sumo-apps/enterprise-audit/#enterprise-audit---user-and-role-management-alerts).
+- **Enterprise Search Audit**. Added the **Enterprise Search Audit – Failures KPIs and Breakdowns** dashboard and monitor alerts to the app.
+    - The dashboard helps you understand search reliability at a glance by visualizing failure trends, slow-running queries, high-cost searches, and problematic content across users and query types, enabling faster troubleshooting and better prioritization of fixes. [Learn more](/docs/integrations/sumo-apps/enterprise-search-audit/#enterprise-search-audit---failures-kpis-and-breakdowns).
+    - The associated monitors alert you when search failures, query runtimes, or data usage exceed defined thresholds, allowing you to detect reliability, performance, or cost issues early and take corrective action before they impact users or budgets. [Learn more](/docs/integrations/sumo-apps/enterprise-search-audit/#enterprise-search-audit-app-alerts).
+- **Flex**. Added Flex monitor alerts that help you detect ingestion spikes, prevent budget overruns, and control expensive queries by automatically flagging abnormal data usage and credit consumption before they impact costs or system stability. [Learn more](/docs/integrations/sumo-apps/flex/#flex-app-alerts).
+- **Infrequent Data Tier**. Added Infrequent Data Tier monitor alerts that help you control costs and usage by detecting consumption spikes, expensive or failed queries, and abnormal user or module-level scan activity before they waste credits. [Learn more](/docs/integrations/sumo-apps/infrequent-data-tier/#infrequent-data-tier-app-alerts).
+- **SentinelOne**. Added SentinelOne monitor alerts that help you detect high-risk threats, suspicious activity, and compliance violations in real time, enabling faster response and stronger endpoint security.
+<!-- - Audit App (Apoorv) to cover Delete use use cases To be released on  Tue 24-Feb -->
+<!-- - Netskope WebTx - Parth -  New based on new log format and new collection - Fri 27-Feb -->
+
+#### App deprecation
+
+- **Security Analytics**. The Security Analytics has been deprecated and is no longer actively supported or recommended for use.