Critical vulnerability in SAP NetWeaver enables malicious file uploads
Adversaries can exploit CVE-2025-31324 to upload web shells and other unauthorized files to execute on the SAP NetWeaver server
The Red Canary Blog: Information Security Insights
Intelligence Insights: April 2025
1 week 3 days ago
Amber Albatross looms large and Arechclient2 makes its debut in this month's edition of Intelligence Insights
The Red Canary Team
Cybersecurity metrics that matter (and how to measure them)
1 week 4 days ago
Which cybersecurity metrics should SOC teams be tracking to measure their success in detecting and responding to threats?
Brian Donohue
Red Canary’s favorite cybersecurity podcasts in 2025
2 weeks 2 days ago
From conversations on hacking to cybercrime capers, we look at 10 cybersecurity podcasts to learn more about the field.
The Red Canary Team
Creating user baseline reports to identify malicious logins
3 weeks 3 days ago
Humans are creatures of habit and unusual logins are a great signal for detection, if you can gather and make sense of identity telemetry.
Ryan Morton
The RSAC 2025 Conference talks worth catching
1 month ago
How AI agents can help purple teaming, inside the stolen credential ecosystem, and more: We read through the RSA agenda so you don't have to.
Chris Brook
2025 Threat Detection Report: Practitioner playbook
1 month 1 week ago
Inspired by our newly released Threat Detection Report, here are five things defenders can do right now to strengthen their security posture.
Tony Lambert
Intelligence Insights: March 2025
1 month 2 weeks ago
Worms break ground and fake browser updates march forward in this month's edition of Intelligence Insights
The Red Canary Team
What does Google’s $32B acquisition of cloud security startup Wiz mean for security operations?
1 month 2 weeks ago
Cloud security is a rapidly accelerating challenge for security operations—a trend highlighted in our 2025 Threat Detection Report.
Keith McCammon
Identity attacks and infostealers dominate the 2025 Threat Detection Report
1 month 2 weeks ago
Our annual analysis brings you a year’s worth of security operations and intelligence insights, with actionable guidance on every page.
Susannah Clark Matt
Red Canary named a Leader in MDR
1 month 4 weeks ago
We wrote the playbook on detection-as-code detection engineering. Forrester now recognizes us among top vendors in the MDR market.
Kelly Horsford
Dive into the Red Canary Security Data Lake
2 months ago
Red Canary now offers cost-efficient data storage that improves your security posture. Learn more about our new Security Data Lake offering.
Dylan Solomon
Polishing Ruby on Rails with RSpec metadata
2 months ago
RSpec metadata helps Red Canary’s engineers generate clean and consistent tests in our Ruby on Rails application
Tom Bonan
Intelligence Insights: February 2025
2 months 1 week ago
Infrared Ibis infiltrates Chrome extensions and Saffron Starling surprises in this month's edition of Intelligence Insights
The Red Canary Team
Defying tunneling: A Wicked approach to detecting malicious network traffic
2 months 2 weeks ago
Follow the yellow brick tunnel for malware analysis of RATs and worms and spyware, oh my! Read our deep dive on network tunneling.
Tony Lambert
CopyObjection: Fending off ransomware in AWS
3 months ago
Why automated response is a necessity to thwart ransomware attacks in Amazon Web Service cloud environments
Jesse Griggs
The unusual suspects: Effectively identifying threats via unusual behaviors
3 months 1 week ago
In the world of identity, cloud, and SaaS, we must move beyond detecting explicitly malicious behaviors to detecting unusual behaviors.
Sam Straka
Intelligence Insights: January 2025
3 months 1 week ago
DarkGate returns and the Tangerine Turkey VBS worm peels off of USBs in this month's edition of Intelligence Insights
The Red Canary Team
Tangerine Turkey mines cryptocurrency in global campaign
3 months 1 week ago
Named by Red Canary, Tangerine Turkey is a VBscript worm delivered via USB that ultimately drops a cryptomining payload
Stef Rand
What we learned by integrating with Google Cloud Platform
3 months 2 weeks ago
An engineer behind Red Canary’s GCP integration recounts how we remodeled our detection engine to ingest millions of new telemetry logs
Whil Piavis
Checked
54 minutes 6 seconds ago