Here’s what you missed on Office Hours: June 2025
Mocha Manakin, malvertising, and social engineering trends: Catch up on the last month's episodes of Red Canary Office Hours.
The Red Canary Blog: Information Security Insights
Contain identity threats automatically with Red Canary and Microsoft Entra ID
2 months 3 weeks ago
Red Canary’s expanded integration with Microsoft Entra ID facilitates rapid response to identity threats with help from expert AI agents
Alex Spiliotes
Email bombs and fake CAPTCHAs: A social engineering survival guide
3 months ago
Educate yourself and your organization's users about two increasingly popular social engineering schemes: email bombing and paste and run
Red Canary Intelligence
Shape shifting: How to wrangle unpredictable data at scale
3 months ago
Red Canary’s engineering team transforms petabytes of data from third-party vendors into a consistent, readable format for threat detection
Ian Woodley
Intelligence Insights: June 2025
3 months ago
Amber Albatross abides and a new color bird threat, Mocha Manakin, manifests in this month's edition of Intelligence Insights
The Red Canary Team
Mocha Manakin delivers custom NodeJS backdoor via paste and run
3 months ago
Named by Red Canary, Mocha Manakin uses paste and run with PowerShell to drop a custom NodeJS backdoor that could lead to ransomware
Red Canary Intelligence
A large learning model: Red Canary’s AI journey
3 months 2 weeks ago
Red Canary was experimenting with generative AI B.C. (before ChatGPT). Our new next-gen AI agents are the capstone of a years-long journey.
Rafael Del Rey
All about that baseline: Detecting anomalies with Surveyor
3 months 2 weeks ago
The Surveyor open source tool can help organizations establish a baseline of their environment, verify activity, and investigate anomalies.
Tre Wilkins
Red Canary CFP tracker: June 2025
3 months 2 weeks ago
Red Canary's monthly roundup of upcoming security conferences and calls for papers (CFP) submission deadlines
Shelley Moore
Here’s what you missed on Office Hours: May 2025
3 months 3 weeks ago
Red Canary to join Zscaler
3 months 3 weeks ago
Today we are announcing a major milestone in our journey – Zscaler has signed a definitive agreement to acquire Red Canary.
Brian Beyer
Intelligence Insights: May 2025
4 months ago
Amber Albatross continues its reign and Latrodectus crawls into the top 10 in this month's edition of Intelligence Insights
The Red Canary Team
Getting started with Conditional Access: Comparing Entra ID Conditional Access with Cisco Duo Security
4 months ago
Everything you need to know about the differences between conditional access policies in Microsoft Entra ID and Cisco Duo.
Sam Straka
Getting started with Conditional Access: Comparing Entra ID Conditional Access with Okta
4 months 1 week ago
Everything you need to know about the differences between conditional access policies in Microsoft Entra ID and Okta.
Sam Straka
Getting started with Conditional Access: 5 must-have Entra ID policies
4 months 2 weeks ago
We walk through Conditional Access prerequisites and recommend the top five CA policies you should implement first.
Sam Straka
Critical vulnerability in SAP NetWeaver enables malicious file uploads
4 months 3 weeks ago
Adversaries can exploit CVE-2025-31324 to upload web shells and other unauthorized files to execute on the SAP NetWeaver server
The Red Canary Team
Intelligence Insights: April 2025
5 months ago
Amber Albatross looms large and Arechclient2 makes its debut in this month's edition of Intelligence Insights
The Red Canary Team
Cybersecurity metrics that matter (and how to measure them)
5 months ago
Which cybersecurity metrics should SOC teams be tracking to measure their success in detecting and responding to threats?
Brian Donohue
Red Canary’s favorite cybersecurity podcasts in 2025
5 months ago
From conversations on hacking to cybercrime capers, we look at 10 cybersecurity podcasts to learn more about the field.
The Red Canary Team
Creating user baseline reports to identify malicious logins
5 months 2 weeks ago
Humans are creatures of habit and unusual logins are a great signal for detection, if you can gather and make sense of identity telemetry.
Ryan Morton
Checked
3 hours 57 minutes ago