Just Announced for BSides Luxembourg 2026!

𝗛𝗘𝗟𝗟𝗢 𝗟𝗨𝗖𝗬 𝗡𝗜𝗖𝗘 𝗧𝗢 𝗠𝗘𝗘𝗧 𝗬𝗢𝗨! - 𝗔 𝗖𝗢𝗡𝗖𝗟𝗨𝗦𝗜𝗢𝗡 𝗢𝗡 𝗔 𝟯 𝗬𝗘𝗔𝗥 𝗢𝗣𝗘𝗡-𝗦𝗢𝗨𝗥𝗖𝗘 𝗖𝗬𝗕𝗘𝗥𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗣𝗥𝗢𝗝𝗘𝗖𝗧 - Denim Latić

Building effective cybersecurity doesn’t have to come at a high cost. This session shares the journey of […]

[Original post on infosec.exchange]

Securonix Securonix is transforming how security operations are delivered, measured, and scaled. Our Unified Defense SIEM combines SIEM, UEBA, SOAR, TIP, and TDIR in a single cloud-native platform that helps security teams detect threats faster, investigate with context, and respond with precision.

The latest update for #Securonix includes "10 Questions CIOs Should Ask to Modernize Security Operations".

#cybersecurity #cloudsecurity #SIEM https://opsmtrs.com/4qmpzeX

LevelBlue LevelBlue is the leading provider of unified security management & community-powered threat intelligence required to detect and act on today’s advanced threats

The latest update for #LevelBlue includes "Building a Unified Security Program with LevelBlue #MDR" and "#Cybersecurity in Hospitality: Defending a Highly Distributed Enterprise".

#SIEM #threatdetection https://opsmtrs.com/3QVpIWH

A Comprehensive #Analysis of Features, Benefits, Challenges, and Best Practices of Security Information and Event Management ( #SIEM ) Solutions

by Marios Vardalachakis, Manos Vasilakis and Manolis Tampouratzis

Comput. Sci. Math. Forum 2025, 12(1), 18; www.mdpi.com/2813-0324/12...

From Logs to Context: Why Your SOC Detection Needs a Real-Time Context and Control Layer In the traditional pipeline, every step after ingestion is retroactive. The SIEM owns the data, and all analysis depends on querying stored records. Alternatively, the new architecture inserts a real-...

The reality of most #SOC pipelines: #Detection happens after ingestion & storage. By the time you query logs in your #SIEM, the attack is already underway.

💡 In our CEO Ting Wang's latest blog, we explore why you need a #realtime context & control layer.

www.timeplus.com/post/from-lo...

Grateful and humbled. Another RSA in the books, great conversations, and new hardware to show for it.

Thanks to all who stopped by and chatted with us.

#RSAC2026 #Graylog #SIEM #CyberSecurity

Splunk 2 TryHackMe Writeup (Part 2) — BOTS v2 SOC Investigation (300 & 400 Series) Advanced Threat Investigation Using Splunk (BOTS v2 Dataset)

Just published the second part of TryHackMe Splunk 2 (Bots v2). A hands-on SOC workflow covering:

• Ransomware
• Malware execution
• C2 traffic
• Persistence analysis

#CyberSecurity #SOCAnalyst #Splunk #SIEM

Системы мониторинга без процессов — ресурсы на ветер, или Как получить максимум эффективности от использо...

#cybersecurity #soc #сзи #siem #анализ #логов #кибербезопасность #процессы #регламенты

Origin | Interest | Match

LevelBlue LevelBlue is the leading provider of unified security management & community-powered threat intelligence required to detect and act on today’s advanced threats

The latest update for #LevelBlue includes "#Cybersecurity in Hospitality: Defending a Highly Distributed Enterprise" and "LevelBlue and SentinelOne: Advancing Integrated, Intelligence‑Driven #SecurityOperations".

#SIEM #threatdetection https://opsmtrs.com/3QVpIWH

Exabeam Appoints Chris Hartley as Vice President UKI and Nordics to Drive Regional Growth and Strengthen Customer Outcomes Hartley brings over two decades of experience in IT, cybersecurity, and business development from Cisco, Intel Corporation, and Rapid7.

#Exabeam has appointed Chris Hartley as Vice President UKI and Nordics.

#cybersecurity #SIEM #ThreatDetection https://opsmtrs.com/487TH6e

Datadog Datadog is the essential monitoring platform for cloud applications, bringing together data to make your stack entirely observable.

The latest update for #Datadog includes "What's new in #Cloud #SIEM: AI-powered investigations, enhanced threat intelligence, and scalable security operations" and "Accelerate #incidentresponse with Datadog and ServiceNow".

#cybersecurity #DevOps https://opsmtrs.com/3rz93Mw

Elastic Elastic is the world's leading software provider for making structured and unstructured data usable in real time for search, logging, security, and analytics use cases.

The latest update for #Elastic includes "#SIEM-as-a-Service offering leverages Elastic for unified #cybersecurity across the US government" and "#AI use cases for security analysts".

https://opsmtrs.com/3iuS618

196 badges. 15 categories. 369 reports.

Engineers and security teams across #Observability, #APM, #SIEM, and #CloudInfrastructure keep choosing Coralogix and telling the world about it.

None of this happens without our customers. Thank you.

👉 https://coralogix.tech/4rS2S1M

Graylog team at RSAC 2026.

Most SIEMs reward complexity. We don't.

Come see us at Booth S-3118 to learn more!

Experience a #SIEM that actually works for lean security teams.

#cybersecurity #RSAC2026

Databricks steigt mit dem agentenbasierten SIEM "Lakewatch" in den Security-Markt ein

#Authentifizierung #Autorisierung #Compliance #Cybersecurity #Cybersicherheit @Databricks #Governance #KIAgent #künstlicheIntelligenz #Lakewatch #SecurityLakehouse #SIEM

netzpalaver.de/2026/...

Detecting and responding to GreenBlood ransomware with Wazuh GreenBlood ransomware is a Go-based ransomware family that has recently emerged in the threat landscape, targeting Windows environments while employing a double-extortion model. The malware is engineered for high-speed execution and parallel file encryption, leveraging the performance and portability benefits of a compiled, statically linked language. This design allows GreenBlood to rapidly impact infected systems […] The post Detecting and responding to GreenBlood ransomware with Wazuh appeared first on Wazuh.

Originally from Wazuh: Detecting and responding to GreenBlood ransomware with Wazuh ( :-{ı▓ #wazuh #siem #cyberresearch

Securonix Securonix is transforming how security operations are delivered, measured, and scaled. Our Unified Defense SIEM combines SIEM, UEBA, SOAR, TIP, and TDIR in a single cloud-native platform that helps security teams detect threats faster, investigate with context, and respond with precision.

The latest update for #Securonix includes "Analyzing FAUX#ELEVATE: Threat Actors Target France with CV Lures to Deploy Crypto miners and Infostealers Targeting Enterprise Environments" and "Security Economics Designed for Outcomes".

#cybersecurity #cloudsecurity #SIEM https://opsmtrs.com/4qmpzeX

LevelBlue LevelBlue is the leading provider of unified security management & community-powered threat intelligence required to detect and act on today’s advanced threats

The latest update for #LevelBlue includes "LevelBlue and SentinelOne: Advancing Integrated, Intelligence‑Driven Security Operations" and "LevelBlue Takes Home Twin 2026 Global Info Sec Awards".

#SIEM #threatdetection https://opsmtrs.com/3QVpIWH

Databricks Launches Lakewatch: A Game-Changer in Cybersecurity with Innovative SIEM Capabilities Databricks has introduced Lakewatch, a pioneering open agentic SIEM that revolutionizes cybersecurity by integrating data for enhanced threat response.

Databricks Launches Lakewatch: A Game-Changer in Cybersecurity with Innovative SIEM Capabilities #USA #San_Francisco #Databricks #SIEM #Lakewatch

Enriching Wazuh vulnerability detection with Google Gemini integration Organizations constantly struggle with vulnerabilities affecting operating systems, applications, and third-party software. These weaknesses expand the attack surface and can be exploited by attackers to compromise the confidentiality, integrity, or availability of systems. Wazuh offers vulnerability detection capability that identifies vulnerabilities in systems and software. However, security analysts must also determine a vulnerability’s exploitability, potential […] The post Enriching Wazuh vulnerability detection with Google Gemini integration appeared first on Wazuh.

Originally from Wazuh: Enriching Wazuh vulnerability detection with Google Gemini integration ( :-{ı▓ #wazuh #siem #cyberresearch

LevelBlue LevelBlue is the leading provider of unified security management & community-powered threat intelligence required to detect and act on today’s advanced threats

The latest update for #LevelBlue includes "LevelBlue Takes Home Twin 2026 Global Info Sec Awards" and "Simplify #Compliance with LevelBlue #MDR Solutions: A Guide to Managed Detection and Response".

#SIEM #threatdetection https://opsmtrs.com/3QVpIWH

Graylog Earns Two Global InfoSec Awards at RSA Conference 2026 for SIEM and Central Log Management Innovation Awards recognize practical AI-driven platform that helps security teams detect threats faster and manage log data at scale   SAN FRANCISCO – March 23, 2026 — Graylog, the AI-powered SIEM built for lea...

Two awards. One booth. Zero tolerance for SIEM that creates more work than it closes.

Graylog won Hot Company SIEM and Best Solution Central Log Management at #RSAC 2026.

Come see us at Booth S-3118 this week.

Full story: graylog.org/news/graylog...

#RSAC2026 #SIEM #CyberSecurity #LogManagement

Security Automation with Elastic Workflows

~Elastic~
Elastic Workflows introduces native SIEM automation for alert triage, threat intel enrichment, and AI-driven response within Kibana.
-
IOCs: (None identified)
-
#Automation #ElasticSecurity #SIEM #ThreatIntel

🔍 Wazuh: A Solução SIEM Ideal! 🛡️
O Wazuh é uma plataforma open source que oferece monitoramento de segurança robusto e resposta a incidentes. Proteja sua empresa em tempo real!
👉 Descubra como: Wazuh, o SIEM Certo.
#Cibersegurança #Wazuh #SIEM #XDR

MISP-Instanz ermöglicht IoC-Austausch mit Kommunen Hessen3C stellt Kommunen Bedrohungsinformationen, wie beispielsweise IP-Adressen, Domains oder Malware-Hashes, über eine eigene Malware Information Sharing Platform Instanz zur Verfügung.

Das Hessen3C geht mit einer MISP-Instanz einen wichtigen Schritt für die kommunale Informationssicherheit. 🧵

#ITSicherheit #Kommunen #MISP #SIEM #SOC #Hessen

Detecting and responding to Cephalus ransomware with Wazuh Cephalus ransomware surfaced in mid-August 2025 and quickly attracted attention for its stealth and operational precision. The threat actors demonstrate a clear financial motivation and rely on initial access vectors. They exploit weak or exposed Remote Desktop Protocol (RDP) configurations, particularly targeting accounts lacking Multi-Factor Authentication (MFA) protection, to gain unauthorized access. Cephalus ransomware targets […] The post Detecting and responding to Cephalus ransomware with Wazuh appeared first on Wazuh.

Originally from Wazuh: Detecting and responding to Cephalus ransomware with Wazuh ( :-{ı▓ #wazuh #siem #cyberresearch

Open source software as the future of cybersecurity  Open source software makes its source code publicly available, allowing anyone to inspect, audit, and improve it. This transparency creates verifiable trust, where security claims can be independently validated by a global community instead of taken on faith. Open source licenses give users full control to understand, customize, and extend the software to meet their […] The post Open source software as the future of cybersecurity  appeared first on Wazuh.

Originally from Wazuh: Open source software as the future of cybersecurity  ( :-{ı▓ #wazuh #siem #cyberresearch

Detecting and responding to Rhadamanthys stealer with Wazuh Rhadamanthys Stealer is a credential-harvesting malware sold as Malware-as-a-Service (MaaS). It is known for its modular architecture, data-stealing capabilities, and continuous updates driven by criminal marketplaces. Attackers distribute Rhadamanthys stealer via phishing emails, cracked software, malicious ads, and fake installers. The stealer primarily targets Windows endpoints to extract browser passwords, crypto wallets, system metadata, autofill […] The post Detecting and responding to Rhadamanthys stealer with Wazuh appeared first on Wazuh.

Originally from Wazuh: Detecting and responding to Rhadamanthys stealer with Wazuh ( :-{ı▓ #wazuh #siem #cyberresearch

Exabeam Exabeam is a leader in intelligence and automation that powers security operations for the world’s smartest companies. As a global cybersecurity leader,

The latest update for #Exabeam includes "Meet Exabeam Sherpa: The AI Backbone of Our Next‑Generation Partner Experience" and "#AI Access Without Add-Ons or Limits".

#cybersecurity #SIEM #ThreatDetection https://opsmtrs.com/4hUXdTB

LevelBlue LevelBlue is the leading provider of unified security management & community-powered threat intelligence required to detect and act on today’s advanced threats

The latest update for #LevelBlue includes "Simplify #Compliance with LevelBlue #MDR Solutions: A Guide to Managed Detection and Response" and "Executive Tabletop Exercises: From Compliance Exercise to Revenue Protection Strategy".

#SIEM #threatdetection https://opsmtrs.com/3QVpIWH