Cloud DFIR

Cloud DFIR, Cloud Investigations
May 25, 2023

How we Sped up Acquiring Forensic Data From Managed Kubernetes Services by 97% by Rebuilding the SDK

In June 2022, we accomplished a major breakthrough by integrating container level support for AKS and EKS into the Cado platform...
Read More
Cloud DFIR, Cloud Investigations
May 23, 2023

Is Cloud Forensics just Log Analysis? Kind Of.

Is Cloud Forensics just Log Analysis? The cloud sure does have a lot of logs. There are IAM logs, application logs, infrastructure...
Read More
Cloud DFIR, Research & Threat Intel
January 20, 2022

Fallout from Log4Shell-related Vietnamese Cryptocurrency Exchange Attack: KYC Data for Sale on Dark Web

Introduction Since its discovery at the end of 2021, Log4Shell – a zero-day vulnerability affecting Apache’s Log4j...
Read More
Cloud DFIR, Expert Opinion
January 6, 2022

Our Take: Four Cloud Security Predictions for 2022

2021 was far from ordinary. Cybersecurity remained front and center after numerous high-profile breaches and vulnerabilities...
Read More
Cloud DFIR, Research & Threat Intel
December 21, 2021

The Continued Evolution of Abcbot

A new version of a malicious shell script targeting insecure cloud instances running under Cloud Service Providers such as...
Read More
Cloud DFIR, Research & Threat Intel
December 14, 2021

Analysis of Novel Khonsari Ransomware Deployed by the Log4Shell Vulnerability

By Matt Muir Overview As previously reported, a recently-discovered critical vulnerability (CVE-2021-44228) in Apache’s...
Read More
Cloud DFIR, Research & Threat Intel
December 13, 2021

Analysis of Initial In The Wild Attacks Exploiting Log4Shell/Log4J/CVE-2021-44228

Introduction Log4J is an open-source logging platform running on Java and built-in to many web platforms. Public reports...
Read More
Announcements, Cloud DFIR
December 6, 2021

How to add Forensics to your SIEM and Start Automating Investigations

By Adam Hillel and Katerina Tiddy SIEM platforms are a key part of an organization’s security operations. A SIEM centralizes...
Read More
Announcements, Cloud DFIR
November 16, 2021

ESG Research Reveals 89% of Companies Negatively Impacted by Cloud Cyber-Attacks Prior to Full Investigation

We’re excited to unveil new cloud digital forensics research in collaboration with ESG. As cloud attacks continue to...
Read More
Cloud DFIR, Research & Threat Intel
November 9, 2021

Cloud Malware Proliferation?

Recently VX Underground released a toolset they report is from the Conti and BlackMatter ransomware gang: As TeamTNT themselves...
Read More

Cado Security is the provider of the first cloud forensics and incident response platform. By leveraging the scale and speed of the cloud, the Cado platform automates forensic-level data capture and processing across cloud, container, and serverless environments. Only Cado empowers security teams to respond at cloud speed.

Free Trial Demo

© Copyright 2022 Cado Security

Sitemap | Privacy Policy