Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The Island of Misfit Logs: Logging the Weird Stuff

Apr 6, 2026 By Graylog In Graylog
Follow Joel Duffield while he talks about why some systems just don’t want to be logged. Whether it’s your backup tool that only sends email alerts, your budget IoT device that wasn’t built for enterprises, or that one SaaS app stuck on the free tier—there’s no clean way to get their messages into your SIEM.
View Video
graylog

Understanding AI Compliance When Choosing AI-Enabled Solutions

Mar 30, 2026 By Jeff Darrington In Graylog
2001: A Space Odyssey introduced the world to HAL 9000, the fictional artificial intelligence (AI). HAL’s capabilities include everything from facial recognition to natural language processing and automated reasoning. As HAL malfunctions over time, the computer becomes violent to prevent the humans from disconnecting it. The story serves as a morality tale suggesting that without human oversight, AI is dangerous.
Read Post
graylog

How to Gain Value from AI in Cybersecurity

Mar 26, 2026 By Jeff Darrington In Graylog
The Terminator is often people’s reference point for artificial intelligence (AI), especially when they worry that technology will be the end of civilization. However, on the other end of the AI spectrum is the beloved, marshmallow fluff Baymax, the helper robot providing assistance to those in his presence. The reality of AI sits somewhere between these two extremes. For security teams, AI initially seemed like a revolutionary technology that would offer faster detection and automated analysis.
Read Post
graylog

Cyber Resilience: The Key to Maintaining Business Operations

Mar 24, 2026 By Jeff Darrington In Graylog
As a child, rubber bands almost seemed magical. They would stretch to fit a size or shape. They could be flung across a room, although not ever at another person and certainly not a sibling. Their resilience means that they would always return to their original shape after being stretched, flung, or twisted.
Read Post
graylog

The Essential Eight: The Foundation of Australian Compliance

Mar 18, 2026 By Jeff Darrington In Graylog
The Australian Signals Directorate (ASD) is the overarching agency that incorporates the Australian Cyber Security Centre (ACSC), the government’s technical cybersecurity authority. In 2018, the ASD became a statutory agency, assuming responsibility for the Computer Emergency Response Team Australia and the Digital Transformation Agency.
Read Post
graylog

The Stryker Cyberattack: Why Endpoint and Mobile Device Monitoring Matter

Mar 13, 2026 By Jeff Darrington In Graylog
Recent reports of a cyberattack targeting medical device manufacturer Stryker highlight a growing challenge for modern organizations: maintaining visibility across every device connected to their networks. The Michigan-based healthcare technology company reported a global network disruption affecting its Microsoft environment following a cyberattack.
Read Post
graylog

Log Correlation for Security and Performance Monitoring

Mar 11, 2026 By Jeff Darrington In Graylog
International travel comes with amazing sights, cultural experiences, and local delicacies. However, most travelers know that it comes with differing economies that impact a money’s value and various currencies. When people need cash, they have to translate the money in their wallets to the local currency, which means different coins and bills. Depending on the exchange rate, the currency’s value can change as the person moves from one country to another.
Read Post
graylog

Understanding the ENS Framework: A Guide to Spain's National Security Framework

Mar 6, 2026 By Jeff Darrington In Graylog
As governments continue to digitize services, the number of systems that support public administration continues to grow. With this expansion comes greater cybersecurity risk. To address these risks, Spain established the Esquema Nacional de Seguridad (ENS), a national framework designed to protect information systems used by public sector organizations. ENS defines the security requirements that ensure government systems remain secure, reliable, and resilient.
Read Post

Logs & Lattes Episode 5: Top 10 Cybersecurity Threats Hybrid Teams Actually Face in 2026

Feb 25, 2026 By Graylog In Graylog
Lean security teams operating in hybrid and regulated environments are not just fighting threats. They are fighting time. When evidence is scattered across email, identity, VPN endpoints, cloud, and network tools, even a solid detection means nothing if triage slows to a crawl. In this episode of Logs and Lattes, host Palmer Wallace and Graylog Solutions Architect Kyle Pearson break down the top ten security threats hybrid organizations are actually dealing with in 2026 and the single common failure behind most of them: fragmented telemetry that delays investigation when it matters most.
View Video
graylog

Detecting Notepad++ CVE-2025-49144 Using Sysmon Logs

Feb 12, 2026 By Jeff Darrington In Graylog
Text editors rarely show up in threat models. Installers show up even less. CVE-2025-49144 changes that. The issue is a local privilege escalation in the Notepad++ Windows installer that can allow a low-privileged user to gain SYSTEM-level execution by abusing insecure executable search behavior during installation. Affected versions include Notepad++ 8.8.1 and earlier, per the NVD record.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.