Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The latest News and Information on Security Incident and Event Management.

The Cloud Crew and Digital Shield and Graylog

May 27, 2025 By Graylog In Graylog
Watch how Digital Shield is Transforming Cybersecurity in South Africa In this interview, Tim Smith — Sales Director at Digital Shield, a cybersecurity-focused subsidiary of The Cloud Crew — shares insights into the evolving threat environment and how businesses in South Africa are responding with more innovative, more strategic security solutions.
View Video
graylog

The Value of Data Enrichment in Cybersecurity Data

May 26, 2025 By Jeff Darrington In Graylog
You’re standing in the grocery store, comparing the nutrition information for two different cereals. The enriched wheat bran cereal has more B12 vitamin content than your favorite sugary one. As an adult, you know that your body needs the additional vitamins in the enriched bran flakes, even if you really want that fruity, sugary hit in the morning. In security, your data needs that additional hit of nutrition so you can correlate and analyze events more effectively.
Read Post
elastic

Cyber threats explained: How to safeguard your enterprise

May 22, 2025 By Elastic Security Team In Elastic
Cyber threats (also known as cybersecurity threats) are events, actions, or circumstances that have the potential to negatively impact an individual or an organization by taking advantage of security vulnerabilities. Cyber threats can affect the confidentiality, integrity, or availability of data, systems, operations, or people’s digital presence.
Read Post
sumologic

The patching paradox: The reality of AI in security

May 22, 2025 By David Girvin In Sumo Logic
Let’s stop pretending AI is going to save security. Sure, it’s going to help — it already is. But the idea that defenders will somehow “keep up” with attackers just because they both have access to generative AI is a fantasy. I come at this from a red-team mindset. I’ve spent years thinking like an attacker. Now I work at a blue-team company trying to defend real systems. And here’s what’s obvious to me: AI is going to let attackers move faster.
Read Post
Exabeam and Vectra AI Partner to Accelerate Threat Detection and Simplify Security Operations

Exabeam and Vectra AI Partner to Accelerate Threat Detection and Simplify Security Operations

May 20, 2025 By Exabeam In Exabeam
New integration unifies Exabeam New-Scale Security Operations Platform with Vectra AI's cutting-edge network detection and response (NDR) to uncover threats that evade traditional tools.
Read Post
sumologic

Secure your Slack environment with Sumo Logic Cloud SIEM

May 20, 2025 By Daniel Kaiser In Sumo Logic
Slack has become integral for many organizations, powering everything from internal to external communication and project workflows. But as adoption grows, so does risk. Hackers are increasingly targeting Slack as it often contains intellectual property, credentials, and valuable reconnaissance information. Sumo Logic Cloud SIEM now secures your Slack usage against insider and third-party threats by monitoring audit logs for suspicious activity to keep your company and its data protected.
Read Post

Detection as Code with Falcon Next-Gen SIEM

May 16, 2025 By CrowdStrike In CrowdStrike
Speed and precision are critical in stopping modern threats. Falcon Next-Gen SIEM brings Detection as Code to the forefront, allowing security teams to version, test, and deploy detection rules with confidence. With powerful API integrations and CI/CD pipeline support, teams can automate rule management, reduce manual errors, and respond to threats faster. Every rule is version-controlled, making it easy to track changes, roll back updates, and scale detection efforts across the organization.
View Video

Beyond Data Routing: Slash SIEM Costs with LimaCharlie's Security Observability Pipeline

May 16, 2025 By LimaCharlie In LimaCharlie
Let’s face it - you’re struggling with managing massive volumes of telemetry and trying to efficiently optimize against budget. Typical observability pipeline tools only solve part of the problem - they route data but lack real-time detection, automation, and response capabilities. Watch this webinar as we demonstrate how LimaCharlie's security observability pipeline use case goes far beyond traditional solutions. With LimaCharlie, you can normalize any telemetry source into a common format while simultaneously enabling automated detection and response directly from your data streams.
View Video

How to Use the LevelBlue DDoS Defense Portal | Video Overview

May 15, 2025 By LevelBlue In LevelBlue
Get up to speed with the essentials of the LevelBlue DDoS Defense Portal in this video tutorial. Learn how to analyze network traffic, monitor threats, and customize your security settings—all in one place. Whether you're managing alerts, viewing mitigations, or generating reports, this step-by-step guide ensures you're prepared. In this video, you’ll learn how to.
View Video

Understanding LevelBlue DDoS Alert Emails & Investigation Process | What to Expect

May 15, 2025 By LevelBlue In LevelBlue
This video explains how LevelBlue DDoS Defense Service alert emails work and provides a clear overview of the investigation and escalation process triggered by high severity alerts. You’ll learn: When and why DDoS alert emails are sent The role of the LevelBlue Threat Management Team How investigations determine malicious vs. legitimate traffic Differences between pre-authorized and manual mitigation What each type of alert email means.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.