Elastic Security is named a Leader in the IDC MarketScape for worldwide SIEM enterprise 2024 vendor assessment.

Elastic is automating SIEM data onboarding with Automatic Import. This feature — the only one of its kind — automates the development of custom data integrations. Elastic now adds custom data sources faster than any competing solution.

Introducing ES|QL: Elastic's piped query language. Transform, enrich, and simplify data investigations with concurrent processing, efficient searches across data, and all-in-one screen aggregations and visualizations delivering iterative workflows.

Elastic Security 8.11 brings ES|QL piped queries, AI Assistant upgrades, and data integrations for Okta, Microsoft Entra ID, Wiz, and Palo Alto Prisma Cloud.

Elastic Security 8.10 brings richer alert contextualization, generative AI in GA, a MITRE ATT&CK® coverage page, and cloud security posture management (CSPM) for GCP.

Black Hat USA 2023 showcased cybersecurity advancements and cutting-edge research. This blog explores major trends and how they may shape the field in the coming months and years.

Elastic Security 8.2 arms analysts with powerful insights and enhanced attack visibility. The release delivers alert contextualization, host inspection directly from an alert, new investigation guides, and the GA of threat intelligence.

With Elastic Security 8.1, stop novel attacks in their tracks. Thwart emerging exploits like Log4Shell with malicious behavior protections for every host and new detection rules for centralized alerting.

Elastic Security 7.16 adds new data integrations for Elastic Agent, expanded malicious behavior protections, memory threat protection for every OS, and enhanced ECS support for Osquery Manager. Plus, new and enhanced ServiceNow workflow integrations.