demisto · ShahafBenYakir · Jul 6, 2023 · Jun 29, 2023 · Jun 29, 2023 · Jun 29, 2023
diff --git a/Packs/CloudIncidentResponse/Layouts/layoutscontainer-CLOUD_Token_Theft.json b/Packs/CloudIncidentResponse/Layouts/layoutscontainer-CLOUD_Token_Theft.json
@@ -478,7 +478,7 @@
                         "minH": 1,
                         "moved": false,
                         "name": "Malicious or Suspicious Indicators",
-                        "query": "reputation:Benign OR reputation:Suspicious OR reputation:Malicious",
+                        "query": "reputation:Suspicious OR reputation:Malicious",
                         "queryType": "input",
                         "static": false,
                         "type": "indicators",
@@ -571,7 +571,7 @@
                         "minH": 1,
                         "moved": false,
                         "name": "Cloud Indicators",
-                        "query": "99900222-7570-4e56-8fa6-1206e76be060",
+                        "query": "displayCloudIndicators",
                         "queryType": "script",
                         "static": false,
                         "type": "dynamic",
@@ -1404,5 +1404,6 @@
     "system": false,
     "version": -1,
     "fromVersion": "6.8.0",
+    "marketplaces": ["marketplacev2"],
     "description": ""
 }
diff --git a/Packs/CloudIncidentResponse/Playbooks/playbook-Cloud_Token_Theft_-_Set_Verdict.yml b/Packs/CloudIncidentResponse/Playbooks/playbook-Cloud_Token_Theft_-_Set_Verdict.yml
@@ -607,4 +607,5 @@ outputs:
 quiet: false
 tests:
 - No tests (auto formatted)
+marketplaces: ["marketplacev2"]
 fromversion: 6.8.0
diff --git a/Packs/CloudIncidentResponse/Playbooks/playbook-Cloud_Token_Theft_Response.yml b/Packs/CloudIncidentResponse/Playbooks/playbook-Cloud_Token_Theft_Response.yml
@@ -2065,4 +2065,5 @@ inputs:
 outputs: []
 tests:
 - No tests (auto formatted)
+marketplaces: ["marketplacev2"]
 fromversion: 6.8.0