logo

Red Canary

ID: 38a0102d-9b27-5628-a502-b7c893263932

STIX ID: identity--38a0102d-9b27-5628-a502-b7c893263932

Feed Type: rss

Earliest post: 2024-12-16

Latest post: 2026-06-01

Actionable threat research, detection engineering insights, and real-world incident analysis from the Red Canary team — focused on strengthening defensive operations and evolving detection strategies.

01/01/2020
06/04/2026
Title Date Published Describes IncidentAuthorVisible
Investigating suspicious AI workflows in Microsoft Entra Agent ID: Autonomous agents2026-05-27TrueMatt GraeberTrue
Intelligence Insights: May 20262026-05-26TrueThe Red Canary TeamTrue
Intelligence Insights: April 20262026-04-23TrueThe Red Canary TeamTrue
Identity, browsers, and node.js: Everything you missed in the Threat Detection Report miniseries2026-04-15TrueChris BrookTrue
Scarlet Goldfinch’s year in ClickFix2026-03-26TrueRed Canary IntelligenceTrue
Intelligence Insights: March 20262026-03-19TrueThe Red Canary TeamTrue
AI and browser threats stand out in the 2026 Threat Detection Report2026-03-18TrueSusannah Clark MattTrue
Moving up the Assemblyline: Exposing malicious code in browser extensions2026-03-12TrueTre WilkinsTrue
Hunting for malicious OpenClaw AI in the modern enterprise2026-03-05TrueBrittany SattlerTrue
Breaking down a supply chain attack leveraging a malicious Google Workspace OAuth app2026-03-04TrueTre WilkinsTrue
Intelligence Insights: February 20262026-02-19TrueThe Red Canary TeamTrue
Intelligence Insights: January 20262026-01-22TrueThe Red Canary TeamTrue
Intelligence Insights: December 20252025-12-18TrueThe Red Canary TeamTrue
KPop Malware Hunters: 2025’s takedowns2025-12-16TrueLaura BrosnanTrue
Bun and done: The second coming of the Shai-Hulud worm2025-12-10TrueThe Red Canary TeamTrue
Beyond the bomb: When adversaries bring their own virtual machine for persistence2025-12-09TrueTony LambertTrue
Intelligence Insights: November 20252025-11-20TrueThe Red Canary TeamTrue
Critical vulnerability in SAP NetWeaver enables malicious file uploads2025-04-30TrueThe Red Canary TeamTrue
Intelligence Insights: April 20252025-04-24TrueThe Red Canary TeamTrue
Intelligence Insights: March 20252025-03-20TrueThe Red Canary TeamTrue
Identity attacks and infostealers dominate the 2025 Threat Detection Report2025-03-18TrueSusannah Clark MattTrue
Intelligence Insights: February 20252025-02-20TrueThe Red Canary TeamTrue
Defying tunneling: A Wicked approach to detecting malicious network traffic2025-02-12TrueTony LambertTrue
Intelligence Insights: January 20252025-01-23TrueThe Red Canary TeamTrue
Tangerine Turkey mines cryptocurrency in global campaign2025-01-23TrueStef RandTrue
Intelligence Insights: December 20242024-12-20TrueThe Red Canary TeamTrue

1–26 of 26

Built by the dogesec team. Copyright 2026.