May 25, 2023
|
By Chas Clawson and Zoe Hawkins
More and more organizations are abandoning the outdated waterfall development methodology for more practical and efficient Agile development practices. As this movement has occurred, development teams are moving faster than ever by employing Continuous Integration (CI) and Continuous Deployment (CD) practices that are serving to shorten development cycles and get new features into production faster. This does, however, come with greater security risk in some respects.
May 23, 2023
|
By Amabel Nathania
Every year, Australians lose over $6 billion due to financial fraud and cybercrime , so it is great to see the collaboration between banks in Australia to fight fraudsters head-on with the help of the Fraud Reporting Exchange (FRX ). The FRX is a trusted, secure, single platform providing timely and efficient means of reporting and actioning fraudulent (including scam) activities between banks.
May 16, 2023
|
By Brandon Borodach
As cloud technology continues to be a cornerstone of modern businesses and organizations, securing cloud environments has become more crucial than ever. Enter cloud security posture management (CSPM), a proactive approach to ensuring the security of cloud infrastructures. With CSPM, organizations can continuously monitor, assess, and remediate potential vulnerabilities and misconfigurations in their cloud environments. But when choosing a CSPM solution, is open source the way to go?
May 10, 2023
|
By Anton Ovrutsky
Kubernetes, and containerization in general, has a wealth of benefits for many teams operating cloud-native applications. From a threat detection standpoint, however, it is often difficult for newcomers to this space to gain the relevant hands-on experience without trampling over production environments. The Sumo Logic team has previously authored articles on Kubernetes DevSecOps vulnerabilities and best practices as well as Kubernetes logging and monitoring.
May 4, 2023
|
By Bashyam Anant and Sourabh Bhosale
Security engineering teams spend hours every week tuning their security information and event management (SIEM) systems to ensure that they are effective at detecting security threats and minimizing false positives. Such “tuning tax” is common as customers add new SIEM rules to cope with rapidly changing threat landscape and attacker tactics and as their attack surface evolves through automated changes to their application and infrastructure stacks.
Apr 20, 2023
|
By Sumo Logic
When we talk about emerging technologies and digitization, we often forget that while innovators work to bring the best solutions to market, cybersecurity gurus are concurrently working to identify loopholes and vulnerabilities in these new systems. Gone are the days when cyber attacks were monthly news; instead, they happen almost daily.
Apr 4, 2023
|
By Dave Frampton
With so many overlapping and self-serving definitions of XDR (Extended Detection and Response), embracing the innovations in technology first require that we parse the alphabet soup. We agree with several industry analysts covering the space that XDR is a vendor push with no real customer demand, but the problem spaces within XDR are of significant customer interest. Consensus has emerged on a few XDR elements such as: cloud-native/SaaS, improved detection, and improved response.
Mar 9, 2023
|
By Enrico Benzoni
A lot has changed since Sumo Logic last gave our two cents on how to secure Office 365. In the meantime, Office 365 has become Microsoft 365 (M365), and Sumo has continued evolving and expanding its security offering. Today’s threat actor is adept at compromising M365 accounts through various methods. Stealing credentials through phishing email campaigns and brute-force attacks has become commonplace.
Feb 22, 2023
|
By Anton Ovrutsky
The Sumo Logic Threat Labs team previously outlined the risks associated with unprotected cloud credentials found on Windows endpoints. This article builds on that work by providing detection and hunting guidance in the context of endpoints that run the Linux operating system. Although workloads that support business functionality are increasingly moving to the cloud, these workloads are often managed through an endpoint that is often found on premises.
Jan 24, 2023
|
By Chas Clawson
Open source security tools are no longer experimental or only used by hobbyists. They protect some of the largest global enterprises and critical digital infrastructure. This evolution occurred more rapidly than anyone imagined or predicted.
May 11, 2023
|
By Sumo Logic
Learn about Sumo Logic's Cloud SIEM Enterprise Audit App, containing dashboards to give you visibility into Cloud SIEM Insights, Records, Signals, and Rules.
May 11, 2023
|
By Sumo Logic
Learn more about Cloud SIEM's new First Seen Rules, which can generate signals when certain behavior or activity is detected for the first time.
May 11, 2023
|
By Sumo Logic
Learn more about two key tools in Cloud SIEM: the Entity Timeline and Entity Relationship Graph and how they can help analyze security incidents.
May 10, 2023
|
By Sumo Logic
Learn more about Cloud SOAR's Automated Responder Knowledge (ARK) feature, which uses machine learning to dynamically suggest playbooks in response to incidents, based on other similar incidents.
May 10, 2023
|
By Sumo Logic
Learn about Sumo Logic's Insight Trainer feature for Cloud SIEM Enterprise, a tool to help SOC teams reduce false positive and "no action" insights.
May 10, 2023
|
By Sumo Logic
Learn about Sumo Logic's Global Intelligence for Security Insights system, which "crowdsources" cybersecurity information from customers around the globe to provide accurate confidence scores for security insights.
May 5, 2023
|
By Sumo Logic
Learn about Sumo Logic's Insight Trainer feature for Cloud SIEM Enterprise, a tool to help SOC teams reduce false positive and "no action" insights.
May 4, 2023
|
By Sumo Logic
Learn about Sumo Logic's Cloud SIEM Enterprise Audit App, containing dashboards to give you visibility into Cloud SIEM Insights, Records, Signals, and Rules.
Apr 28, 2023
|
By Sumo Logic
Learn about Sumo Logic's Global Intelligence for Security Insights system, which "crowdsources" cybersecurity information from customers around the globe to provide accurate confidence scores for security insights.
Nov 8, 2018
|
By Sumo Logic
Security information and event management (SIEM) solutions have been around since 2000, and they were developed with the goal of helping organizations in the early detection of targeted attacks and data breaches.
Nov 1, 2018
|
By Sumo Logic
SIEM stands for Security Information and Event Management and these solutions have been around since 2000. They were developed with the goal of helping organizations in the early detection of targeted attacks and data breaches.
Oct 1, 2018
|
By Sumo Logic
In this paper we will discuss some of the general philosophies and perspectives that will assist anyone who wants to securely leverage the benefits the cloud by using its strengths to overcome issues that have traditionally been labeled as weaknesses.
Jul 1, 2018
|
By Sumo Logic
This white paper describes the technologies and processes used by Sumo Logic to secure customer data, and provides background on the company's deeply ingrained security culture.
Jun 1, 2018
|
By Sumo Logic
This white paper is intended to support stakeholders movement of applications to the cloud, and provide some fundamental approaches to adopt in order to better protect every layer of the AWS infrastructure.
- May 2023 (14)
- April 2023 (6)
- March 2023 (2)
- February 2023 (3)
- January 2023 (3)
- December 2022 (5)
- November 2022 (5)
- October 2022 (3)
- September 2022 (13)
- August 2022 (1)
- July 2022 (3)
- June 2022 (5)
- May 2022 (2)
- April 2022 (4)
- March 2022 (5)
- February 2022 (3)
- January 2022 (5)
- December 2021 (5)
- November 2021 (4)
- October 2021 (8)
- September 2021 (18)
- August 2021 (14)
- July 2021 (11)
- June 2021 (6)
- May 2021 (3)
- April 2021 (2)
- March 2021 (3)
- February 2021 (2)
- January 2021 (5)
- December 2020 (8)
- November 2020 (2)
- October 2020 (4)
- September 2020 (1)
- August 2020 (1)
- July 2020 (8)
- June 2020 (7)
- May 2020 (7)
- April 2020 (4)
- March 2020 (6)
- February 2020 (5)
- January 2020 (2)
- December 2019 (2)
- November 2019 (1)
- October 2019 (7)
- September 2019 (6)
- August 2019 (6)
- July 2019 (4)
- June 2019 (5)
- May 2019 (2)
- April 2019 (2)
- March 2019 (4)
- February 2019 (3)
- January 2019 (2)
- November 2018 (2)
- October 2018 (1)
- July 2018 (1)
- June 2018 (1)
Empowering the People Who Power Modern Business. A Cloud-native Machine Data Analytics Platform for DevSecOps.
Sumo Logic is a secure, cloud-native, machine data analytics service, delivering real-time, continuous intelligence from structured, semi-structured and unstructured data across the entire application lifecycle and stack.
Build, run and secure your AWS, Azure, Google Cloud Platform or Hybrid applications with Sumo Logic, a cloud-native, machine data analytics service for log management and time series metrics.
- Optimize Continuous Delivery: Accelerate development, testing, & deployment of your application.
- Monitor & Troubleshoot in Real Time: Enable DevOps to proactively identify and fix performance issues.
- Secure Your Platform: Detect, investigate and respond to security issues instantly.
- Simplify Compliance Management: Ensure compliance with HIPAA, PCI, GDPR and much more.
One platform for real-time, Continuous Intelligence.