Log inSign up
Red Canary, a Zscaler company
5,877 posts
Image
user avatar
Red Canary, a Zscaler company
@redcanary
24/7/365 threat detection and response across your cloud, identity, endpoints and everything in-between. We got you: bit.ly/44icmuy
USA
redcanary.com/products/multi…
Joined February 2014
1,164
Following
30K
Followers
RepliesRepliesMediaMedia

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Red Canary, a Zscaler company
    @redcanary
    Aug 1, 2025
    Today, Red Canary officially joins the @zscaler family! 🎉 We are thrilled to mark this incredible milestone and join forces with the leader in cloud security to deliver unified security operations to help our customers strengthen their cyber defenses. Zscaler and Red Canary
    Image
    5K
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Apr 14, 2021
    Introducing VSCode-ATT&CK, a new open source plug-in that lets you query the @MITREattack framework without clicking out of your code editor. bit.ly/3g9epIU
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Mar 31, 2021
    The Red Canary 2021 Threat Detection Report is now available. Use this in-depth look at the most prevalent ATT&CK® techniques to help you and your team focus on what matters most.
    Image
    Welcome to the Red Canary Threat Detection Report
    From redcanary.com
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Oct 11, 2017
    Excited to release our test cases based on @MITREattack. Small and highly portable detection tests:
    Image
    GitHub - redcanaryco/atomic-red-team: Small and highly portable detection tests based on MITRE's...
    From github.com
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Feb 18, 2022
    Over the past few hours, we’ve observed malicious phishing emails associated with the delivery affiliate TR in multiple customer environments. The infection scheme was consistent, executing in the following pattern: OneDrive phishing page -> ZIP download -> malicious XLSB -> Qbot
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Jan 28, 2020
    From the folks that brought you Atomic Red Team, Chain Reactor is a new open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints. redcanary.com/blog/chain-rea…
    Image
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Feb 19, 2021
    Silver Sparrow is a cluster of activity that includes a binary compiled to run on Apple’s new M1 chips but lacks one very important feature: a malicious payload. redcanary.com/blog/clipping-… #RCintel
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Oct 26, 2023
    Protecting Linux from cyber attacks critical tactic #7: Harden your Linux system. For more critical tactics, take a look at our Linux Security Checklist: redcanary.com/resources/guid…
    Image
    25K
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Oct 12, 2021
    DETECTION OPP: We’re seeing increased Qbot activity, including new TTPs that we haven’t previously associated with this threat. While we haven’t observed the ultimate payload delivered by Qbot, this trend is concerning given that Qbot is often a precursor to Conti ransomware. 1/6
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Oct 29, 2020
    Considering the spate of recent ransomware incidents affecting hospitals, we decided to share the ten detection analytics that helped us stop one earlier this month. redcanary.com/blog/how-one-h… #Ryuk
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Feb 13, 2020
    Invoke-AtomicRedTeam, a PowerShell framework that makes it easier to execute Atomic Red Team tests, is now an open source project of its own. This will make contributions and maintenance of both projects faster and easier for all involved!
    Image
    GitHub - redcanaryco/invoke-atomicredteam: Invoke-AtomicRedTeam is a PowerShell module to execute...
    From github.com
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Mar 22, 2022
    The 2022 Threat Detection Report is out! Join us in counting down the most prevalent threats we encountered in our customers' environments last year. We'll reveal a new threat every hour in this thread (Or just download the report & see them all now) redcanary.com/resources/guid…
    Image
    00:00
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Jun 28, 2022
    The #BumbleBee dropper/downloader continues to change. We’re now seeing odbcconf.exe load the malicious DLL (rather than Rundll32). While odbcconf.exe can execute DLL files, we don’t commonly observe it doing so in the wild, so this is an interesting change! #RCIntel
    Image
  • user avatar
    Red Canary, a Zscaler company
    @redcanary
    Feb 24, 2022
    Mimikatz ascends the threat ranks, Emotet increases phishing campaigns, and the new Coral Crane activity cluster emerges. Check out January's Intelligence Insights: redcanary.com/blog/intellige…
    Image
Advertisement
Advertisement