Phew! 
It was a great day two at #RSAC. Thank you to Cyber Defense Magazine #InfoSec Awards for naming Graylog:
Best Product Central Log Management (Graylog Enterprise) Best Solution #SIEM (Graylog Security)
You have two more days to catch us, LIVE, at the conference and ask us all of your burning questions about what's new in #Graylog 6.2! 
Hey hey, #RSA! Welcome to Tuesday. 
See us today, in #3134 to...
Connect with our amazing team, in-person
Learn all about #SIEM without compromise
Get your stickers, key chains, fancy water bottles, 
more
Talk about the new Illuminate Content Hub in 6.2
...and so much more.
Want a personalized demo with our experts? We got ya. C'mon over! 
https://graylog.org/rsa-2025/ #cybersecurity #RSAC #RSAC2025 #APIsecurity #security
It's here! 
#Graylog 6.2—a #SIEM without compromise. 
Our latest innovations empower you to log everything, detect what matters, and respond with precision—without overloading your team or your budget. 
Seth Goldhammer digs into the exciting updates in this latest release, including:
Log collection: no more “all or nothing”
No more dropping logs to save cost! Now you can route to license-free standby data lakes, then preview and selectively recall what is important.
Threat detection: from alert overload to risk-led action
You don't need to disable detections to reduce noise. Enable more—and only triage alerts with automatic corroborated evidence.
Incident response: ditch the binder, evolve beyond the playbook
Get consistent steps and contextual LLM guidance.
Read on to learn more about the #Graylog Spring ‘25 release. And see it in action at booth #3134 at #RSAC starting today! 
https://graylog.org/post/introducing-graylog-6-2-a-siem-without-compromise/ #RSA #RSAC2025 RSA Conference #cybersecurity
Translate from Sigma into 48 Languages – Source: socprime.com https://ciso2ciso.com/translate-from-sigma-into-48-languages-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #socprimecom #socprime #Splunk #Sigma #Blog #SIEM
Engineering firms have become lucrative targets for cyber attacks. 
Yet, #cybersecurity in engineering is frequently only reactive and not proactive, with security implemented by simply patching vulnerabilities after an attack has already happened. This needs to change.
Today’s threat landscape requires a different approach to #security — from continuous network monitoring and early detection to rapid response. This is where Security Information and Event Management (#SIEM) can come into play.
By embedding SIEM into the cybersecurity framework, engineering companies can ensure that every digital action is continuously protected. Learn more, in this article by Ross Brewer for TechRadar Pro. 
https://www.techradar.com/pro/the-engineers-guide-to-staying-ahead-of-cyber-threats #cyberattack
It's almost time for #RSAC2025! 
We'll be there, in Moscone South #3134, showcasing our Spring ‘25 release. 
Want to see what's new? Get a live demo of the latest Graylog Security release — a platform purpose-built for mid-enterprise #security teams that demand speed, accuracy, and efficiency.
Stop by, say hi, and see Graylog in action at #RSA. https://graylog.org/rsa-2025/ #cybersecurity #APIsecurity #SIEM
Graylog has been named a Visionary in EMA’s Vendor Vision report for the 2025 RSA Conference! 
We are pleased to be recognized as one of just twelve vendors in this special report. 
Thank you to Enterprise Management Associates (EMA), for this awesome recognition.
Wanna learn more about what makes #Graylog so special and explore how modern #SIEM can drive better outcomes for #security teams? See our new Spring ’25 release at #RSAC in Moscone Center Booth 3134 South.
https://www.prnewswire.com/news-releases/ema-unveils-top-security-innovators-in-annual-vendor-vision-report-ahead-of-the-2025-rsa-conference-302429257.html
#cybersecurity #infosec #threatdetection
Streamlining detection engineering in security operation centers – Source: securelist.com https://ciso2ciso.com/streamlining-detection-engineering-in-security-operation-centers-source-securelist-com/ #rssfeedpostgeneratorecho #detectionengineering #CyberSecurityNews #Cybersecurity #securelistcom #TIandIRposts #0CISO2CISO #SIEM #SOC
Hello #Singapore! 
We are excited to be opening our new #Graylog office in Singapore and to be partnering with RIPEN, a leading IT security consultancy, to deliver dedicated customer support across the #APAC region.
As part of this exciting expansion and our record growth in the region we've appointed Gerald Lum, Regional Vice President of Sales. In this role, Mr. Lum will oversee the #sales operations and performance in APAC, drive revenue targets, and more. 
https://graylog.org/news/graylog-solutions-drive-record-growth-in-apac/ #cybersecurity #SIEM #ITsecurity
Graylog paid vs. Open — which one do I need? 
Graylog Open is a powerful, self-managed solution. And for many users, that's all they need! But... as your environment grows, DIY workarounds and manual processes could slow you down. It's hard to know when it's time to upgrade. So, we made a handy list to help you decide.
If you've been considering upgrading but aren't sure if it's the right time, take a look at this information and see if it makes sense for you. Compare different features, see features in action, and more.
https://graylog.org/open-vs-paid/ #SIEM #logmanagement #cybersecurity
My SIEM-Agnostic Creative Process to Detection Engineering: https://osintteam.blog/my-siem-agnostic-creative-process-to-detection-engineering-4e401ac60b63
You might know #Graylog as a #SIEM, but did you know that it can also be a fun tool for creative, low-cost experiments in a home lab? 
Jeff Darrington recently created a DIY temperature and humidity monitor using an ESP-WROOM-32 development board and a DHT22 sensor. 
Follow along as Jeff creates a lightweight #API endpoint on the ESP32, polls it regularly using Graylog’s HTTP API input, and visualizes the results in a live dashboard. 
Have you tried anything fun and creative lately with Graylog? Tell us about it!
https://graylog.org/post/iot-sensor-lab-guide/ #GraylogLabs #logmanagement
Today, #security teams need to be both proactive and effective in defending their orgs. It's not enough to just assume that your #SIEM is always reporting reliable insights! 
In this article via Cybersecurity Insiders, #Graylog Principal Security Strategist Neil Desai shares some great advice on how to get back to #cybersecurity strategy fundamentals and build a resilient SOC. Neil discusses prioritizing data hygiene, investing in cybersecurity education, breaking down internal department silos, and more — to help your security team succeed. 
https://www.cybersecurity-insiders.com/the-four-fundamentals-of-cybersecurity-to-build-a-resilient-soc/ #infosec
IT-Sicherheitsmonitoring – 26 sinnvolle Maßnahmen zur Erkennung kritischer IT-Vorgänge
Ich habe eine umfassende und praxisnahe Übersicht zur Orientierung erstellt – mit konkreten Schwellenwerten, Bedingungen und Tool-Kategorien:
Benutzeranomalien Systemveränderungen Netzwerkanomalien Ransomware-Indikatoren Canary Files, LSASS-Zugriffe, PowerShell-Analyse Backup- & GPO-Schutz u. v. m.
https://kommunaler-notbetrieb.de/empfehlungen/it-sicherheitsmonitoring/
Warum Patches nicht das ultimative Ziel sind
#Cybersecurity #Cybersicherheit @Graylog #Patching #Schwachstelle#Schwachstellenmanagement #Vulnerability #SIEM
https://netzpalaver.de/2025/04/01/warum-patches-nicht-das-ultimative-ziel-sind/
Did someone say FREE training? 
Welcome to #Graylog Academy! We are excited to give you the tools to gain immediate value, unlock #security analytics, and begin data driven decision-making as you embark upon (or continue) your journey with Graylog. 
Check out the awesome selection of FREE courses you can take, including: Adding Context and Enriching Your Log Data Events, Alerts, and Notifications Hardening Graylog with TLS Intro to API Security Introduction to Graylog Dashboards Pipelines, Parsing and the Graylog Information Model
Did we mention that many of the courses are 
What are you waiting for! Let's go. 
https://academy.graylog.org/home #APIsecurity #SIEM #logmanagement #cybersecurity #infosec
Maybe I'm missing something, but Sysmon is fucking weird:
- Developed by Microsoft subsidiary since the late 2000s, yet still not properly packaged by Microsoft, no auto-update mechanism or anything
- Download from non-microsoft domain linked to from a Microsoft Learn page
- Download is a .zip file without any version info
- binaries inside contain zero version info
- no chronological releases page anywhere to be found
- no RSS feed or anything else I could subscribe to, to be alerted when a new version comes out
- Deployed to millions of machines world-wide
- actively encouraged to install by every major SIEM vendor out there
How the fuck am I supposed to keep this thing up to date and/or be alerted to security patches after I've rolled out this unversioned binary blob across my whole ecosystem?
Spring clean your security data: The case for cybersecurity data hygiene https://www.helpnetsecurity.com/2025/03/25/security-data-hygiene/ #Expertanalysis #datamanagement #cybersecurity #Expertcorner #cyberhygiene #Don'tmiss #Hotstuff #strategy #Auguria #opinion #News #SIEM #SOC
It was a packed house for the Graylog #BSidesROC Capture The Flag on Saturday! Thank you to everyone who joined us for the fun and games. 
You are all amazing and, now, a little (or a lot!) more knowledgable about #Graylog! It's a win-win. 
And congrats to our challenge winners! 
Grand prize winner — Tyler Smith
Training voucher winner — Praveen Kumar Penukonda
Runner up — Gabriel Schickling
New Open-Source Tool Spotlight
Azure Sentinel is Microsoft's cloud-native SIEM tool. It integrates AI to detect threats, automate responses, and monitor logs across environments. Useful for hybrid clouds, it supports connectors for platforms like AWS, Office 365, and more. #CloudSecurity #SIEM
Project link on #GitHub https://github.com/Azure/Azure-Sentinel
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— 
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 
