Intelligence Insights: May 2025
Amber Albatross continues its reign and Latrodectus crawls into the top 10 in this month's edition of Intelligence Insights
The Red Canary Blog: Information Security Insights
Getting started with Conditional Access: Comparing Entra ID Conditional Access with Cisco Duo Security
2 days 1 hour ago
Everything you need to know about the differences between conditional access policies in Microsoft Entra ID and Cisco Duo.
Sam Straka
Getting started with Conditional Access: Comparing Entra ID Conditional Access with Okta
1 week 1 day ago
Everything you need to know about the differences between conditional access policies in Microsoft Entra ID and Okta.
Sam Straka
Getting started with Conditional Access: 5 must-have Entra ID policies
2 weeks 1 day ago
We walk through Conditional Access prerequisites and recommend the top five CA policies you should implement first.
Sam Straka
Critical vulnerability in SAP NetWeaver enables malicious file uploads
3 weeks 1 day ago
Adversaries can exploit CVE-2025-31324 to upload web shells and other unauthorized files to execute on the SAP NetWeaver server
The Red Canary Team
Intelligence Insights: April 2025
4 weeks 1 day ago
Amber Albatross looms large and Arechclient2 makes its debut in this month's edition of Intelligence Insights
The Red Canary Team
Cybersecurity metrics that matter (and how to measure them)
1 month ago
Which cybersecurity metrics should SOC teams be tracking to measure their success in detecting and responding to threats?
Brian Donohue
Red Canary’s favorite cybersecurity podcasts in 2025
1 month ago
From conversations on hacking to cybercrime capers, we look at 10 cybersecurity podcasts to learn more about the field.
The Red Canary Team
Creating user baseline reports to identify malicious logins
1 month 1 week ago
Humans are creatures of habit and unusual logins are a great signal for detection, if you can gather and make sense of identity telemetry.
Ryan Morton
The RSAC 2025 Conference talks worth catching
1 month 2 weeks ago
How AI agents can help purple teaming, inside the stolen credential ecosystem, and more: We read through the RSA agenda so you don't have to.
Chris Brook
2025 Threat Detection Report: Practitioner playbook
1 month 3 weeks ago
Inspired by our newly released Threat Detection Report, here are five things defenders can do right now to strengthen their security posture.
Tony Lambert
Intelligence Insights: March 2025
2 months ago
Worms break ground and fake browser updates march forward in this month's edition of Intelligence Insights
The Red Canary Team
What does Google’s $32B acquisition of cloud security startup Wiz mean for security operations?
2 months ago
Cloud security is a rapidly accelerating challenge for security operations—a trend highlighted in our 2025 Threat Detection Report.
Keith McCammon
Identity attacks and infostealers dominate the 2025 Threat Detection Report
2 months ago
Our annual analysis brings you a year’s worth of security operations and intelligence insights, with actionable guidance on every page.
Susannah Clark Matt
Red Canary named a Leader in MDR
2 months 2 weeks ago
We wrote the playbook on detection-as-code detection engineering. Forrester now recognizes us among top vendors in the MDR market.
Kelly Horsford
Dive into the Red Canary Security Data Lake
2 months 2 weeks ago
Red Canary now offers cost-efficient data storage that improves your security posture. Learn more about our new Security Data Lake offering.
Dylan Solomon
Polishing Ruby on Rails with RSpec metadata
2 months 3 weeks ago
RSpec metadata helps Red Canary’s engineers generate clean and consistent tests in our Ruby on Rails application
Tom Bonan
Intelligence Insights: February 2025
3 months ago
Infrared Ibis infiltrates Chrome extensions and Saffron Starling surprises in this month's edition of Intelligence Insights
The Red Canary Team
Defying tunneling: A Wicked approach to detecting malicious network traffic
3 months 1 week ago
Follow the yellow brick tunnel for malware analysis of RATs and worms and spyware, oh my! Read our deep dive on network tunneling.
Tony Lambert
CopyObjection: Fending off ransomware in AWS
3 months 2 weeks ago
Why automated response is a necessity to thwart ransomware attacks in Amazon Web Service cloud environments
Jesse Griggs
Checked
1 hour 47 minutes ago