Intelligence Insights: July 2025
CleanUpLoader compromises, Poseidon Stealer debuts, and LummaC2 lives again in this month’s edition of Intelligence Insights
The Red Canary Blog: Information Security Insights
10 Black Hat talks we want to see in 2025
3 days 17 hours ago
Talks on bypassing SOCs and initial access—we scoured this year’s list of sessions at Black Hat to find 10 talks worth making time for.
Chris Brook
A defender’s guide to initial access techniques
1 week 5 days ago
Experts from Red Canary, MITRE ATT&CK® and Proofpoint explore the ways adversaries break in, including fake CAPTCHAs and social engineering.
Susannah Clark Matt
The double-edged sword of MCP: Understanding the threat landscape for AI workflows
2 weeks 2 days ago
We break down the cybersecurity landscape of Model Context Protocol (MCP) servers and agentic AI workflows, including monitoring advice
Jesse Griggs
Announcing Red Canary MDR for Cisco Duo
2 weeks 5 days ago
Pair Duo’s trusted access security with Red Canary’s 24/7 expert MDR to stop identity attacks before they disrupt your business.
Kelly Horsford
Red Canary named a Leader in G2’s Summer 2025 MDR Reports — #1 in enterprise customer satisfaction
3 weeks 3 days ago
A Leader in G2’s Summer 2025 Grid®, Enterprise Grid®, and Mid-Market Grid® Reports for MDR, Red Canary ranked #1 in enterprise customer satisfaction.
Faith Wenger
Red Canary CFP tracker: July 2025
3 weeks 4 days ago
Red Canary's monthly roundup of upcoming security conferences and calls for papers (CFP) submission deadlines
Shelley Moore
Here’s what you missed on Office Hours: June 2025
4 weeks 1 day ago
Mocha Manakin, malvertising, and social engineering trends: Catch up on the last month's episodes of Red Canary Office Hours.
Contain identity threats automatically with Red Canary and Microsoft Entra ID
1 month ago
Red Canary’s expanded integration with Microsoft Entra ID facilitates rapid response to identity threats with help from expert AI agents
Alex Spiliotes
Email bombs and fake CAPTCHAs: A social engineering survival guide
1 month ago
Educate yourself and your organization's users about two increasingly popular social engineering schemes: email bombing and paste and run
Red Canary Intelligence
Shape shifting: How to wrangle unpredictable data at scale
1 month ago
Red Canary’s engineering team transforms petabytes of data from third-party vendors into a consistent, readable format for threat detection
Ian Woodley
Intelligence Insights: June 2025
1 month 1 week ago
Amber Albatross abides and a new color bird threat, Mocha Manakin, manifests in this month's edition of Intelligence Insights
The Red Canary Team
Mocha Manakin delivers custom NodeJS backdoor via paste and run
1 month 1 week ago
Named by Red Canary, Mocha Manakin uses paste and run with PowerShell to drop a custom NodeJS backdoor that could lead to ransomware
Red Canary Intelligence
A large learning model: Red Canary’s AI journey
1 month 2 weeks ago
Red Canary was experimenting with generative AI B.C. (before ChatGPT). Our new next-gen AI agents are the capstone of a years-long journey.
Rafael Del Rey
All about that baseline: Detecting anomalies with Surveyor
1 month 3 weeks ago
The Surveyor open source tool can help organizations establish a baseline of their environment, verify activity, and investigate anomalies.
Tre Wilkins
Red Canary CFP tracker: June 2025
1 month 3 weeks ago
Red Canary's monthly roundup of upcoming security conferences and calls for papers (CFP) submission deadlines
Shelley Moore
Here’s what you missed on Office Hours: May 2025
1 month 4 weeks ago
Red Canary to join Zscaler
1 month 4 weeks ago
Today we are announcing a major milestone in our journey – Zscaler has signed a definitive agreement to acquire Red Canary.
Brian Beyer
Intelligence Insights: May 2025
2 months ago
Amber Albatross continues its reign and Latrodectus crawls into the top 10 in this month's edition of Intelligence Insights
The Red Canary Team
Getting started with Conditional Access: Comparing Entra ID Conditional Access with Cisco Duo Security
2 months ago
Everything you need to know about the differences between conditional access policies in Microsoft Entra ID and Cisco Duo.
Sam Straka
Checked
1 hour 43 minutes ago