Taegis Terminology Alignment and Advanced Search Update

As we work towards platform convergence of Sophos and Taegis technologies, we are standardizing terminology that is used across both products. These changes lay the foundation for an unparalleled security operations platform for mitigating cyberattacks.

Terminology Alignment

The following terminology changes are now generally available to all users and have no impact on existing workflows:

• Alerts will be renamed Detections
• Investigations will be renamed Cases
• Automatic Investigations will be renamed Automatic Cases

You may still see references to the old terms while we continue to work towards platform convergence of Sophos and Taegis technologies.

Advanced Search Query Language Updates

With these terminology updates, the Query Language used in Advanced Search and custom rules will support the use of from detection instead of from alert. Both methods will be supported initially, and existing saved searches that use from alert will be automatically updated to use from detection in a future release.

External queries called through the SDK and APIs will continue to maintain backward compatibility.

You will see the Query Language updates once the terminology changes reach general availability on the following anticipated timeline:

• October 9, 2025: New queries will support use of from detection.
• November 9, 2025: Existing saved searches will be automatically updated to use from detection.
• November 9, 2025: New search queries will require use of from detection.

What Do I Need to Do?

• No immediate action is required. Existing workflows will continue to work as normal.
• Explore the updated terminology for Advanced Search, Suppression Rules, and Custom Rules in Secureworks® Taegis™ XDR.