Articles By Devon Kerr


Elastic Security Labs: Síguenos para conocer las novedades de último momento sobre la investigación de amenazas de seguridad

Elastic Security Labs ahora es el dominio único oficial de investigación de amenazas; esto facilita encontrar y compartir investigaciones sobre amenazas de seguridad que posibiliten un lugar de trabajo y, en general, una industria más protegidos.


Elastic's response to the Spring4Shell vulnerability (CVE-2022-22965)

Provide executive-level details about CVE-2022-22965, a recently-disclosed remote code execution (RCE) vulnerability also known as “Spring4Shell”.


Detection and Response for HAFNIUM activity

In response to the Microsoft HAFNIUM 0-day exploit, Elastic Security has identified IoCs for highly damaging adversary objectives. Users with on-premise Exchange servers are advised to patch as soon as possible. View full details of identified IoCs.


Elastic Security provides free and open protections for SUNBURST

Elastic Security has been updated and our users are not affected by SolarWinds’ recent security advisory regarding a supply-chain attack on the Orion management platform. Identify potential attacks using new and existing rules in this post.


Elastic partners with DDC to offer free election security to 2020 campaigns

Elastic will offer free Elastic Endpoint Security to the 2020 US presidential and congressional campaigns in partnership with Defending Digital Campaigns.


Introducing Endgame Red Team Automation

The absence of a turnkey validation toolkit with sufficient detail to account for the range of adversary behavior further limits an organization’s ability to ca