Artificial authentication: Understanding and observing Azure OpenAI abuse The Red Canary Blog: Information Security Insights 6 days 11 hours ago Adversaries can compromise key material in Azure OpenAI to host malicious models, poison trained models, and steal intellectual property. Matt Graeber
Intelligence Insights: October 2024 The Red Canary Blog: Information Security Insights 1 week 5 days ago LummaC2 lurks thanks to PowerShell pasting in this month's edition of Intelligence Insights The Red Canary Team
Apple picking: Bobbing for Atomic Stealer & other macOS malware The Red Canary Blog: Information Security Insights 3 weeks 5 days ago Your company’s Apple devices are ripe for attacks using macOS malware such as Atomic Stealer. Here’s what to look out for. Laura Brosnan
Infosec horoscopes: Astrology for SOC teams The Red Canary Blog: Information Security Insights 1 month ago Zodiac-inspired predictions, advice, and resources for security operations center (SOC) teams and other infosec professionals Susannah Clark Matt
Intelligence Insights: September 2024 The Red Canary Blog: Information Security Insights 1 month 1 week ago We share virtual private network hardening guidance to cut through FOG ransomware in this month's edition of Intelligence Insights The Red Canary Team
Keep track of AWS user activity with SourceIdentity attribute The Red Canary Blog: Information Security Insights 1 month 1 week ago The SourceIdentity attribute in AWS’s Security Token Service (STS) can help defenders trace AWS role activity back to its source. Jesse Griggs
Trending cyberthreats and techniques from the first half of 2024 The Red Canary Blog: Information Security Insights 1 month 2 weeks ago We’re revisiting our annual Threat Detection Report with a midyear update highlighting trends from detections in the first half of 2024. Brian Donohue
The CrowdStrike outage: Detection and defense in depth The Red Canary Blog: Information Security Insights 1 month 3 weeks ago By adopting defense in depth, security operations teams can avoid any single point of failure in the tangles of the global supply chain Keith McCammon
Detecting brute-force attacks with a smart watchlist The Red Canary Blog: Information Security Insights 1 month 3 weeks ago Tre Wilkins
Reel in troves of data with webhooks The Red Canary Blog: Information Security Insights 2 months 1 week ago Red Canary uses AWS API Gateway webhooks to process floods of security telemetry every day. Here's how we do it. James Prior
Recent dllFake activity shares code with SecondEye The Red Canary Blog: Information Security Insights 2 months 1 week ago Red Canary Intel discovered overlaps in code between dllFake and previous campaigns leveraging Iranian user monitoring software SecondEye. Red Canary Intelligence
Intelligence Insights: August 2024 The Red Canary Blog: Information Security Insights 2 months 2 weeks ago Keep tabs on ChromeLoader and other browser-related threats in this month's edition of Intelligence Insights The Red Canary Team
A defender’s guide to crypters and loaders The Red Canary Blog: Information Security Insights 3 months ago Experts from Red Canary and elsewhere break down how adversaries rely on crypters and loaders, including detection guidance Susannah Clark Matt
Certified evil: Investigating signed malicious binaries The Red Canary Blog: Information Security Insights 3 months ago Adversaries often sign malicious binaries to create a facade of validity, but a signed binary isn’t necessarily a safe one Brian Donohue
5 lessons for entry-level software engineers The Red Canary Blog: Information Security Insights 3 months ago A Red Canary software engineer looks back on the first three years of her career and offers advice for those just getting started Belle Scott
Intelligence Insights: July 2024 The Red Canary Blog: Information Security Insights 3 months 1 week ago Amber Albatross arrives via potentially unwanted programs (PUP) and dllFake debuts in this month's edition of Intelligence Insights The Red Canary Team
How Red Canary works to create an accessible coding environment for all The Red Canary Blog: Information Security Insights 3 months 2 weeks ago Explore how Red Canary fosters accessibility in its coding environment with intuitive interfaces, comprehensive documentation, community support, accessible features, and ongoing enhancements. Hilary Stohs-Krause
Halting a hospital ransomware attack The Red Canary Blog: Information Security Insights 3 months 4 weeks ago Red Canary prevented a hospital from being breached. See how we stopped ransomware from enabling a catastrophic event. Brian Donohue
Navigating the cloud security landscape The Red Canary Blog: Information Security Insights 4 months 1 week ago Discover the differences between Managed Security Providers (MSPs) and Managed Detection and Response (MDR) for cloud security. Chris Rothe
Scarlet Goldfinch: Taking flight with NetSupport Manager The Red Canary Blog: Information Security Insights 4 months 1 week ago Everything you need to know about Scarlet Goldfinch, which uses fake browser updates to trick users into downloading NetSupport Manager. Laura Brosnan