Search form

On-Demand Webinars

Transforming IT into the Enterprise Innovation Engine
The Future of IT Operations - AIOps, Observability and Beyond
Solving the SLO Riddle: Why SLOs Aren't Enough
Taking Web Performance to the Next Level
Equinox levels up its observability fitness with Elastic
Measuring Real-World Performance of DNS Solutions
Introducing Internet Stack Map
What's New at Catchpoint! Spring 2024 Product Launch Event
Master Class: Optimizing CX through 4 Pillars of Internet Resilience
Avoid Observability Failure: Hybrid Enterprises Must Complement APM with Internet Performance Monitoring
Observability Trends: Key Considerations for Modern Observability
Navigating Today's I&O Landscape: Leveraging Cloud, Hyper-Convergence and Observability
Master Class: Monitoring from Your Users' Perspective
2024 Tech Trends: 10 Predictions for Tomorrow's IT Evolution
The SRE Report 2024: What the Charts Don't Tell You
2024 Security Trends: How Generative AI Is Changing the Threat Landscape
Getting the Most Out of Elastic Observability & New Features
Tales from the trenches: Security leaders share insights on protecting higher education
The Impact of AIOps and GAI on Modern Observability
Countering Internet Complexity with AI-Powered Internet Performance Monitoring
Maximizing Customer Lifetime Value: Transforming Ecommerce with AI-Powered Search
AI Meets Search: Powering a New Generation of Insights
Behind the Scenes: Rocket Lawyer's Secret Sauce for Uninterrupted Digital Legal Services
3 Tips to Supercharge Your Application Tracing
What's New at Catchpoint! Fall 2023 Product Launch Event
Demo of Internet Sonar: From Disruption to Instant Detection
Harnessing the Power of Generative AI in Retail
Expert Insights: Navigating Outages Like a Pro
What's New in Application Monitoring: Maximizing Operational Efficiency with Enhanced Performance Insights
Preventing Outages: Implement an Internet Performance Monitoring Plan

All Webinars...

Analyst Reports

Gartner® Magic Quadrant™ for Observability Platforms 2024
Modern Enterprises Must Boost Observability with Internet Performance Monitoring
Forrester Opportunity Snapshot: Increase Revenue with Internet Performance Monitoring

All Analyst Reports...

White Papers

Cloud monitoring: A complex yet essential aspect of effective cloud management
Level up with distributed tracing: Enhancing application performance with Applications Manager
Top challenges of digitization and how network traffic analysis can help
What is APM: Understanding the Basics of Application Performance Management
What is end-user experience monitoring?
How IT leaders can drive more with less
Internet Resilience Report 2024
Bandwidth throttling - A strategic approach to network bandwidth monitoring and optimization with NetFlow Analyzer
Address multi-client network traffic monitoring challenges with OpManager MSP’s new NetFlow Analyzer integration
Full-stack observability: Implementation, benefits, and ROI
Network traffic analysis for today's IT
The SRE Report 2024
The 2024 Observability Landscape — a survey of observability decision-makers
2024 State of IT Operations Report: Journey to Agility
OpUtils IP scanner for visibility: See everything, manage effortlessly
Digital experience monitoring in Applications Manager
How to monitor Apache web server performance metrics
How IT leaders can drive more with less
Firewall Segmentation
Startup vs. running configuration conflict: Its impact, and how to avoid it
A comprehensive guide to enhance performance and reliability in your storage systems
An IT leader's enterprise guide to drive more with less
Website monitoring in Applications Manager
Synthetic monitoring 101: A comprehensive guide to synthetic monitoring
Beyond deployment: The ongoing challenges in application performance monitoring implementation
How Is IPAM Simplifying Modern Networking?
The Elastic Generative AI Report
Database Monitoring for Beginners: 6 Steps to Get You Started
6 Best Practices for Application Performance Monitoring
Visibility, Scalability, Security: Why IPAM Is the Cornerstone of Robust Data Centers

All White Papers...

Sumo Logic Threat Labs Launched
June 13, 2022
Share this

Sumo Logic unveiled Sumo Logic Threat Labs, a threat research and security detection unit.

The Threat Labs unit is among the expanded services and tools from Sumo Logic to help customers modernize security operations and achieve greater cyber-resilience.

The Sumo Logic Threat Labs Unit is built to deliver a continuous stream of deep detection content, rapid response guidance, and actionable best practices to Sumo Logic security customers. The team is staffed with domain experts with backgrounds in forensics, incident response, and red/blue teaming, as well as offensive and defensive cyber operations in the United States military and intelligence services. Informed by deep human expertise, the Threat Labs Unit will also play a larger role in contributing advanced detection logic and best practices to the security community to help collectivize the defense.

Dave Frampton, VP/GM, Sumo Logic Security Business Unit said, “Our Threat Labs Unit will contribute actionable insights to our customers from leading-edge threat research, we will also share insight with the community to improve the industry's collective defense. Our deep and diverse practitioner expertise translates into advanced detection coverage delivered in a unique SaaS model which combines real-time global updates with deployment customization for individual customers.”

Modern threat surfaces also encompass application security at every layer of the stack. Customers need end-to-end workflows coordinated across detection, investigation and response efforts. Threat Labs insights are delivered across the Sumo Logic security portfolio, ranging from detection and investigation in Cloud SIEM to automated threat response in Cloud SOAR. In its SaaS delivery platform, Sumo Logic updates detection content for all customers at least twice weekly, to shorten the cycle time from research to concrete defense adaption in environments where every minute counts.

As first reported in the media in April, the very first malware exploiting serverless computing was found in the wild creating crypto-miner instances in AWS Lambda. Called Denonia, this cutting-edge malware requires a holistic approach to detection, investigation, and response. The Threat Labs Unit performed research and detection engineering on the Sumo Logic platform. The team then generated content for detection in Cloud SIEM, delivered analysis and hunting across the platform, and orchestrated the response in Cloud SOAR all in one workflow.

Share this

The Latest

Unleash the Potential of AI in the Cloud, But Manage It Wisely
September 19, 2024

As businesses and individuals increasingly seek to leverage artificial intelligence (AI), the cloud has become a critical enabler of AI's transformative power. Cloud platforms allow organizations to seamlessly scale their AI capabilities, hosting complex machine learning (ML) models while providing the flexibility needed to meet evolving business needs ... However, the promise of AI in the cloud brings significant challenges ...

Prioritizing Digital Employee Experience Positively Impacts Cybersecurity Efforts
September 18, 2024

The business case for digital employee experience (DEX) is clear: more than half (55%) of office workers say negative experiences with workplace technology impact their mood/morale and 93% of security professionals say prioritizing DEX has a positive impact on an organization's cybersecurity efforts, according to the 2024 Digital Employee Experience Report: A CIO Call to Action, a new report from Ivanti ...

The Status of Enterprise AI: AI Hype to Reality
September 17, 2024

For IT leaders, a few hurdles stand in the way of AI success. They include concerns over data quality, security and the ability to implement projects. Understanding and addressing these concerns can give organizations a realistic view of where they stand in implementing AI — and balance out a certain level of overconfidence many organizations seem to have — to enable them to make the most of the technology's potential ...

4 Insights into Modern Cloud Inefficiency
September 16, 2024

For the last 18 years — through pandemic times, boom times, pullbacks, and more — little has been predictable except one thing: Worldwide cloud spending will be higher this year than last year and a lot higher next year. But as companies spend more, are they spending more intelligently? Just how efficient are our modern SaaS systems? ...

The OpenTelemetry Getting Started Survey: Understanding Users' Observability Journeys
September 12, 2024

The OpenTelemetry End-User SIG surveyed more than 100 OpenTelemetry users to learn more about their observability journeys and what resources deliver the most value when establishing an observability practice ... Regardless of experience level, there's a clear need for more support and continued education ...

Why Data Silos Kill Collaboration
September 11, 2024

A silo is, by definition, an isolated component of an organization that doesn't interact with those around it in any meaningful way. This is the antithesis of collaboration, but its effects are even more insidious than the shutting down of effective conversation ...

8 Takeaways from the State of Observability for Industrials, Materials and Manufacturing Report
September 10, 2024

New Relic's 2024 State of Observability for Industrials, Materials, and Manufacturing report outlines the adoption and business value of observability for the industrials, materials, and manufacturing industries ... Here are 8 key takeaways from the report ...

Enhancing the Availability of Important but Non-Critical Applications
September 09, 2024

For mission-critical applications, it's often easy to justify an investment in a solution designed to ensure that the application is available no less than 99.99% of the time — easy because the cost to the organization of that app being offline would quickly surpass the cost of a high availability (HA) solution ... But not every application warrants the investment in an HA solution with redundant infrastructure spanning multiple data centers or cloud availability zones ...

Top 5 Tips: How to Find the Best Edge Services Observability Fit
September 05, 2024

The edge brings computing resources and data storage closer to end users, which explains the rapid boom in edge computing, but it also generates a huge amount of data ... 44% of organizations are investing in edge IT to create new customer experiences and improve engagement. To achieve those goals, edge services observability should be a centerpoint of that investment ...

5 Ways Government Contractors Can Tackle Digital Transformation
September 04, 2024

The growing adoption of efficiency-boosting technologies like artificial intelligence (AI) and machine learning (ML) helps counteract staffing shortages, rising labor costs, and talent gaps, while giving employees more time to focus on strategic projects. This trend is especially evident in the government contracting sector, where, according to Deltek's 2024 Clarity Report, 34% of GovCon leaders rank AI and ML in their top three technology investment priorities for 2024, above perennial focus areas like cybersecurity, data management and integration, business automation and cloud infrastructure ...