Wazuh

🏆 2026 CyberStars Awards - Wazuh wins two! 🏆 We're proud to announce that Wazuh has been recognized with two awards by The Hacker News in the first edition of the CyberStars Awards: 🥇 Best Cloud Security Platform https://lnkd.in/e6BnDqRZ 🥇 Best Security Information and Event Management (SIEM) Platform https://lnkd.in/euqbKU9i Being named Best SIEM Platform for the second time, after winning Best SIEM Solution at SC Awards in 2023, speaks to the continued growth and impact of the Wazuh community. It's a reflection of the work our team puts in every day to make enterprise-grade security accessible to everyone through open source. Thank you to The Hacker News for this recognition. Being part of the first edition of the CyberStars Awards makes it even more special. This is the result of an incredible team effort and a community that continues to push us forward. 🙌 #Wazuh #CyberSecurity #OpenSource #SIEM #XDR #CyberStarsAwards

🏆 2026 CyberStars Awards - Wazuh wins two! 🏆 We're proud to announce that Wazuh has been recognized with two awards by The Hacker News in the first edition of the CyberStars Awards: 🥇 Best Cloud Security Platform https://lnkd.in/e6BnDqRZ 🥇 Best Security Information and Event Management (SIEM) Platform https://lnkd.in/euqbKU9i Being named Best SIEM Platform for the second time, after winning Best SIEM Solution at SC Awards in 2023, speaks to the continued growth and impact of the Wazuh community. It's a reflection of the work our team puts in every day to make enterprise-grade security accessible to everyone through open source. Thank you to The Hacker News for this recognition. Being part of the first edition of the CyberStars Awards makes it even more special. This is the result of an incredible team effort and a community that continues to push us forward. 🙌 #Wazuh #CyberSecurity #OpenSource #SIEM #XDR #CyberStarsAwards

🏆 2026 CyberStars Awards - Wazuh wins two! 🏆 We're proud to announce that Wazuh has been recognized with two awards by The Hacker News in the first edition of the CyberStars Awards: 🥇 Best Cloud Security Platform https://ow.ly/iZn550Zb8QM 🥇 Best Security Information and Event Management (SIEM) Platform https://ow.ly/JrSw50Zb8QN Being named Best SIEM Platform for the second time, after winning Best SIEM Solution at SC Awards in 2023, speaks to the continued growth and impact of the Wazuh community. It's a reflection of the work our team puts in every day to make enterprise-grade security accessible to everyone through open source. Thank you to The Hacker News for this recognition. Being part of the first edition of the CyberStars Awards makes it even more special. This is the result of an incredible team effort and a community that continues to push us forward. 🙌 #Wazuh #CyberSecurity #OpenSource #SIEM #XDR #CyberStarsAwards

I’m excited to share my first official contribution as a Wazuh 𝐀𝐦𝐛𝐚𝐬𝐬𝐚𝐝𝐨𝐫. This article dives into 𝐒𝐄𝐎 𝐩𝐨𝐢𝐬𝐨𝐧𝐢𝐧𝐠, a malware delivery technique where attackers manipulate search engine results to trick users into downloading fake installers. In this campaign, threat actors disguised legitimate utility tools and used malicious installers to deploy 𝐒𝐜𝐫𝐞𝐞𝐧𝐂𝐨𝐧𝐧𝐞𝐜𝐭, establish remote access, create persistence, modify Microsoft Defender exclusions, and even attempt GPU mining. The blog demonstrates how Wazuh can detect these behaviors on Windows endpoints using Sysmon process creation logs. 👇 👇 👇 https://lnkd.in/gDP5TR2p

Efficient log management is a key requirement for scalable security monitoring, especially in environments where multiple tenants, systems, or business units generate large volumes of security data. Our latest blog explores how to implement dynamic index routing in Wazuh. This approach enables intelligent routing of alerts into dedicated indices based on event attributes such as agent labels, severity levels, and custom fields. The result is improved data isolation, simplified retention policies, and improved operational visibility across complex deployments. Read more: https://ow.ly/E5vh50ZaypZ #InformationSecurity #SecurityOperations #CyberSecurity #OpenSource

Efficient log management is a key requirement for scalable security monitoring, especially in environments where multiple tenants, systems, or business units generate large volumes of security data. Our latest blog explores how to implement dynamic index routing in Wazuh. This approach enables intelligent routing of alerts into dedicated indices based on event attributes such as agent labels, severity levels, and custom fields. The result is improved data isolation, simplified retention policies, and improved operational visibility across complex deployments. Read more: https://ow.ly/E5vh50ZaypZ #InformationSecurity #SecurityOperations #CyberSecurity #OpenSource

Oracle Database Server is affected by CVE-2026-46833 (CVSS 9.0 - Critical), a vulnerability in the Net Service component. The flaw allows an unauthenticated attacker with TLS-based network access to compromise Net Service. Although exploitation is considered difficult, successful attacks can extend beyond the vulnerable component due to a change in scope. This may result in the takeover of systems beyond the vulnerable Net Service component, with significant impacts on confidentiality, integrity, and availability. This vulnerability affects Oracle Database Server versions 23.4.0 through 23.26.2. Organizations should apply Oracle's latest security updates immediately, restrict unnecessary TLS network exposure to Net Service, and monitor systems for suspicious network activity and unauthorized access attempts. For more information, refer to: https://ow.ly/2NuH50Z9XJu #Vulnerability #Cybersecurity

Security teams shouldn’t spend more time managing their SIEM than fighting actual threats. Wazuh Cloud addresses this with a fully managed SIEM + XDR solution that maximizes the efficiency of security operations. Here is how it helps security teams stay ahead: ⚡ Instant onboarding: Get up and running in minutes. Deploy lightweight agents across Windows, Linux, macOS, containers, and cloud environments. Pre-configured rules, intuitive dashboards, and security capabilities such as File Integrity Monitoring (FIM), Vulnerability Detection, and Security Configuration Assessment (SCA) are ready from day one. 🤖 Wazuh AI analyst: Let the built-in Wazuh AI analyst generate weekly insights that highlight high-risk issues, significantly reducing alert fatigue and manual effort. 🛡️ Wazuh CTI: Leverage threat intelligence to identify vulnerabilities, understand emerging threats, and take proactive actions. ☁️ Fully managed: No servers to manage, no patching, no scaling concerns. The infrastructure is managed for you. 📈 Flexible subscription tiers: Choose a plan that aligns with your agent count, data retention requirements, and feature needs, with the flexibility to scale as you grow. 🧑💻 Expert support: Gain direct access to Wazuh engineers for custom configurations and expert assistance. By eliminating infrastructure management and operational complexity, Wazuh Cloud enables security teams to spend less time maintaining infrastructure and more time investigating and responding to threats. Start your free Wazuh Cloud trial today: https://wazuh.com/cloud/ #CyberSecurity #WazuhCloud #ManagedSecurity #InfoSec

I’m always looking for ways to push the Wazuh platform capabilities further. My latest blog post focuses on a classic but powerful combination: integrating YARA rules directly into your Wazuh deployment. While Wazuh File Integrity Monitoring (FIM) is excellent for telling you when a file changes, pairing it with YARA allows you to automatically analyze what is inside that file the moment it hits the system. How the workflow works: - Detection: Wazuh monitors the endpoint and catches a file modification in real time - Automation: An active response script passes the file to YARA without manual intervention - Visibility: If YARA flags a match, the telemetry is sent straight back to your central Wazuh dashboard for analysis It is a straightforward way to turn your passive monitoring into an active, automated threat-hunting pipeline using the native extensibility of the Wazuh agent. If you want to set this up in your own environment, I’ve broken down the full configuration step-by-step. Check out the guide here: https://bit.ly/4o1AV7q Check out Wazuh: https://bit.ly/4ekjvzG