Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Sumo Logic Threat Labs team previously outlined the risks associated with unprotected cloud credentials found on Windows endpoints. This article builds on that work by providing detection and hunting guidance in the context of endpoints that run the Linux operating system. Although workloads that support business functionality are increasingly moving to the cloud, these workloads are often managed through an endpoint that is often found on premises.

Phishing is a big problem that’s getting even bigger as cybercriminals find new ways to hook employees. With threats coming from every direction – emails on company computers, text and voice messages on mobile devices and in personal communications channels, malicious typosquatting sites, phony marketing QR codes and more – it’s only a matter of time before someone trips up and opens or clicks on something they shouldn’t.

Welcome to our first ever The State of Secrets Security in SaaS Apps, an in-depth look at what security risks are posed by the data stored in organizations' SaaS applications. As companies have adopted a remote-first approach to work, these solutions have increasingly been used to send and store passwords, secrets, and API keys.

Fireblocks will host the first-ever Fireblocks BUIDLathon at this year’s ETHDenver, the largest and longest-running ETH-focused event in the world. With $25,000 in prizes up for grabs, the Fireblocks BUIDLathon is an exciting chance to gain early access to a Fireblocks Developer Sandbox to build new Web3 products. Read on to learn everything you need to know about the competition.

Here at Graylog, we have recently had an increase in conversations with security teams from leading companies. We want to share our key findings with the Graylog community. The good thing is that cybercriminals use a methodical approach when planning an attack. By understanding their process and knowing your network, you will be better prepared and able to stay one step ahead.

The internet is used for just about everything in our lives: to pay bills, shop, stream movies, attend school, work remotely and more. Since we are now online more than ever, cybercriminals are always coming up with new ways to steal data. One way is by leading people to illegitimate websites, which is why it’s crucial that you know how to spot a legitimate site from a phony one.

The decision to buy a Security Information and Event Management (SIEM) product or outsource to a Managed Detection and Response (MDR) service depends on a number of factors, including the size of your organization, the complexity of your IT infrastructure, and your overall security needs.

When strategizing a security approach for the coming year, many solutions will cross a CISO’s desk, all useful in covering some part of the network. Organizations must scrutinize every layer and each solution to make sure their security stack runs efficiently while still boasting a Defense-in-Depth approach. There cannot be an overload of alerts, the learning curve must be worth the cost, and all solutions must integrate with each other.