Elastic Security Labs researchers Apoorva and Devon experiment with ChatGPT to understand if it really can be used by threats to conduct sophisticated attacks. Spoiler alert: don’t believe the hype.

In the second part of our breaking down the Elastic Global Threat Report series, we’re focusing on the credential access tactic, which was the third-most common category of behavior we observed.

Devon Kerr breaks down the Defense Evasion statistics from this year's Elastic Global Threat Report, offering additional details from behind the keyboard.

Elastic is partnering with Tidal Cyber to improve transparency even further, and helping Tidal and Elastic users understand the capabilities we’re providing in the language of ATT&CK.

Elastic Security Labs is now the official, one-stop domain for threat research, making it easier to find and share security threat research that will lead to a more secure workplace and a more protected industry overall.

In response to the Microsoft HAFNIUM 0-day exploit, Elastic Security has identified IoCs for highly damaging adversary objectives. Users with on-premise Exchange servers are advised to patch as soon as possible. View full details of identified IoCs.

Elastic Security has been updated and our users are not affected by SolarWinds’ recent security advisory regarding a supply-chain attack on the Orion management platform. Identify potential attacks using new and existing rules in this post.

Elastic will offer free Elastic Endpoint Security to the 2020 US presidential and congressional campaigns in partnership with Defending Digital Campaigns.

The absence of a turnkey validation toolkit with sufficient detail to account for the range of adversary behavior further limits an organization’s ability to ca