Node problem: Tracking recent npm package compromises
Recent npm supply chain attacks highlight why robust mitigation and response strategies are required for both developers and users.
The Red Canary Blog: Information Security Insights
You’re invited: Four phishing lures in campaigns dropping RMM tools
1 week 4 days ago
Joint research from Red Canary Intelligence and Zscaler threat hunters spotlights phishing campaigns dropping RMM tools
Red Canary Intelligence
Understanding OAuth application attacks and defenses
2 weeks 5 days ago
Red Canary’s Threat Hunting team recently uncovered a malicious OAuth application attack, demonstrating the need for specific defenses.
Chris Brook
Red Canary CFP tracker: September 2025
3 weeks ago
Red Canary's monthly roundup of upcoming security conferences and calls for papers (CFP) submission deadlines
Shelley Moore
Here’s what you missed on Office Hours: August 2025
3 weeks 5 days ago
OAuth application abuse, emerging cloud tradecraft and the AI threat landscape: Catch up on last month's episodes of Red Canary Office Hours.
Intelligence Insights: August 2025
1 month ago
Precursors get preempted and NetSupport Manager gets promoted in this month’s edition of Intelligence Insights
The Red Canary Team
Respond faster and empower users with Red Canary Managed Phishing Response
1 month ago
Managed Phishing Response offers AI-powered triage, rapid expert analysis, and tailored feedback for every user-reported phishing email
Jake Davidson
Patching for persistence: How DripDropper Linux malware moves through the cloud
1 month ago
DripDropper is a Red Canary-named Linux malware variant that uses an encrypted PyInstaller ELF file to communicate with a Dropbox account.
Christina Johns
12 questions to ask before you buy MDR
1 month 1 week ago
Essential questions you should ask managed detection and response (MDR) providers before you make your investment
Ranking the top threats and techniques for the first half of 2025
1 month 2 weeks ago
Identity detections climbed, color birds swooped in, and two new cloud techniques broke into our top 10 in the first half of 2025
Brian Donohue
Red Canary CFP tracker: August 2025
1 month 2 weeks ago
Red Canary's monthly roundup of upcoming security conferences and calls for papers (CFP) submission deadlines
Shelley Moore
Here’s what you missed on Office Hours: July 2025
1 month 3 weeks ago
SIEMs, CleanUpLoader, FileFix, and npm packages: Catch up on the last month's episodes of Red Canary Office Hours.
Our favorite talks from fwd:cloudsec 2025
1 month 3 weeks ago
Red Canary’s cloud security enthusiasts left fwd:cloudsec 2025 with some invaluable insights and community connections
The Red Canary Team
Intelligence Insights: July 2025
1 month 4 weeks ago
CleanUpLoader compromises, Poseidon Stealer debuts, and LummaC2 lives again in this month’s edition of Intelligence Insights
The Red Canary Team
10 Black Hat talks we want to see in 2025
2 months ago
Talks on bypassing SOCs and initial access—we scoured this year’s list of sessions at Black Hat to find 10 talks worth making time for.
Chris Brook
A defender’s guide to initial access techniques
2 months 1 week ago
Experts from Red Canary, MITRE ATT&CK® and Proofpoint explore the ways adversaries break in, including fake CAPTCHAs and social engineering.
Susannah Clark Matt
The double-edged sword of MCP: Understanding the threat landscape for AI workflows
2 months 1 week ago
We break down the cybersecurity landscape of Model Context Protocol (MCP) servers and agentic AI workflows, including monitoring advice
Jesse Griggs
Announcing Red Canary MDR for Cisco Duo
2 months 2 weeks ago
Pair Duo’s trusted access security with Red Canary’s 24/7 expert MDR to stop identity attacks before they disrupt your business.
Kelly Horsford
Red Canary named a Leader in G2’s Summer 2025 MDR Reports — #1 in enterprise customer satisfaction
2 months 3 weeks ago
A Leader in G2’s Summer 2025 Grid®, Enterprise Grid®, and Mid-Market Grid® Reports for MDR, Red Canary ranked #1 in enterprise customer satisfaction.
Faith Wenger
Red Canary CFP tracker: July 2025
2 months 3 weeks ago
Red Canary's monthly roundup of upcoming security conferences and calls for papers (CFP) submission deadlines
Shelley Moore
Checked
15 hours 57 minutes ago