Greg Foss
@gregfoss.com
📤 929
đź“Ą 352
đź“ť 8
Security Research Leader @ Datadog Views are strictly my own
We recently partnered with Okta to ship new identity threat detections, alongside contributing to Okta's open source Security Detection Catalog, so the broader security community benefits. Big thanks to the Okta Cyber Defense team for the collaboration!
sec.okta.com/articles/202...
loading . . .
Datadog and Okta Combine for New Customer Detections
Comprehensive monitoring of identity activity is crucial to the security of any organization. A compromised identity can lead to widespread data breaches and
https://sec.okta.com/articles/2026/03/datadog-okta-collaboration/
3 days ago
0
2
1
reposted by
Greg Foss
Datadog Security Labs
8 months ago
Beyond Mimo’lette: Tracking Mimo's Expansion to Magento CMS and Docker
securitylabs.datadoghq.com/articles/bey...
loading . . .
Beyond Mimo’lette: Tracking Mimo's Expansion to Magento CMS and Docker | Datadog Security Labs
This post reports on activity from the 'Mimo' threat actor.
https://securitylabs.datadoghq.com/articles/beyond-mimolette-tracking-mimo-expansion-magento-cms-docker/
0
2
1
reposted by
Greg Foss
Datadog Security Labs
8 months ago
fwd:cloudsec is around the corner! Don't miss these 3 talks from Datadog researchers Seth Sec, Katie Knowles, Greg Foss, and Anthony Randazzo.
fwdcloudsec.org/conference/n...
@sethsec.bsky.social
@siigil.bsky.social
@gregfoss.com
0
4
2
reposted by
Greg Foss
techy
10 months ago
I'm so excited to announce that Datadog Security Research is launching a FREE, fully-online, Detection Engineering focused conference called Datadog Detect!
bit.ly/datadog-detect
Our lineup is incredible with experts in the field of detection, response and threat intelligence.
loading . . .
Datadog Detect: Scale your Security Operations with Detection Engineering | Datadog
See metrics from all of your apps, tools & services in one place with Datadog's cloud monitoring as a service solution. Try it for free.
https://bit.ly/datadog-detect
0
10
3
Excited to speak at
@fwdcloudsec.org
in Denver on June 30 with Anthony Randazzo! We’ll share lessons from a year of cloud threat hunting. Don’t miss other
@securitylabs.datadoghq.com
talks from
@siigil.bsky.social
on EntraID escalation and
@sethsec.bsky.social
on AMI name confusion as well!
loading . . .
fwd:cloudsec 2025 Speaker Bios & Abstracts | fwd:cloudsec
fwd:cloudsec is a non-profit conference on cloud security. At this conference you can expect discussions about all the major cloud platforms, both attack and defense research, limitations of security...
https://fwdcloudsec.org/conference/north-america/speakers.html
10 months ago
0
7
1
reposted by
Greg Foss
Nick Frichette
11 months ago
@datadoghq.com
Security Research is heading to RSAC next week! Come join us for any of our talks on the main stage, meet our research team at the Datadog booth, or attend some of the leadership events below!
www.datadoghq.com/event/rsa202...
loading . . .
Datadog at RSA Conference 2025 | Datadog
Datadog at RSA Conference 2025
https://www.datadoghq.com/event/rsa2025/?utm_source=frichette
0
3
2
Today our
#Datadog
Security Research and Detection Engineering team released our first threat roundup report! Datadog has unique visibility into threat actor activity targeting cloud environments and this report highlights our key findings from Q4 2024.
securitylabs.datadoghq.com/articles/202...
loading . . .
Datadog threat roundup: top insights for Q4 2024 | Datadog Security Labs
Threat insights from Datadog Security Labs for Q4 2024.
https://securitylabs.datadoghq.com/articles/2024-q4-threat-roundup/
about 1 year ago
1
12
5
reposted by
Greg Foss
Eric Geller
about 1 year ago
DHS has terminated the memberships of everyone on its advisory committees. This includes several cyber committees, like CISA's advisory panel and the Cyber Safety Review Board, which was investigating Salt Typhoon. That review is "dead," person familiar says.
www.documentcloud.org/documents/25...
51
1065
783
reposted by
Greg Foss
Datadog Security Labs
about 1 year ago
"Tales from the cloud trenches: Unwanted visitor"
securitylabs.datadoghq.com/articles/tal...
This post describes an attacker that we've observed in the wild, including a malicious AWS account ID used to create a backdoor IAM role.
0
20
6
reposted by
Greg Foss
Nick Frichette
over 1 year ago
New from Datadog Security Research! Threat actors are constantly publishing backdoored software libraries to steal credentials, get C2, and more.
@ikretz.bsky.social
did something about it. Meet the Supply-Chain Firewall, a tool to block malicious packages.
securitylabs.datadoghq.com/articles/int...
loading . . .
Introducing Supply-Chain Firewall: Protecting Developers from Malicious Open Source Packages | Datadog Security Labs
Release of Supply-Chain Firewall, an open source tool for preventing the installation of malicious PyPI and npm packages
https://securitylabs.datadoghq.com/articles/introducing-supply-chain-firewall/
0
20
9
reposted by
Greg Foss
Datadog Security Labs
over 1 year ago
Exploring Google Cloud Default Service Accounts: Deep Dive and Real-World Adoption Trends
securitylabs.datadoghq.com/articles/goo...
by
@christophetd.fr
loading . . .
Exploring Google Cloud Default Service Accounts: Deep Dive and Real-World Adoption Trends | Datadog Security Labs
This post offers a deep dive into Google Cloud’s default service accounts, explaining their functionality, risks, and real-world adoption trends.
https://securitylabs.datadoghq.com/articles/google-cloud-default-service-accounts/
0
10
2
reposted by
Greg Foss
Eslam Salem
over 1 year ago
I will be presenting Guarddog
github.com/datadog/guar...
at Blackhat MEA next week. If you will be there come and say Hi
loading . . .
GitHub - DataDog/guarddog: :snake: GuardDog is a CLI tool to Identify malicious PyPI and npm packages
:snake: :mag: GuardDog is a CLI tool to Identify malicious PyPI and npm packages - GitHub - DataDog/guarddog: :snake: GuardDog is a CLI tool to Identify malicious PyPI and npm packages
https://github.com/datadog/guarddog
0
6
1
reposted by
Greg Foss
techy
over 1 year ago
I made a Detection Engineering starter pack, will be adding more as more folks jump over to bluesky!
go.bsky.app/HenXJUR
add a skeleton here at some point
8
125
58
reposted by
Greg Foss
Rory McCune
over 1 year ago
If you're looking for the security talks from Kubecon NA 2024, I've added the abstracts and Youtube embeds to
talks.container-security.site/categories/#...
. There's also talks going back to 2016 in case you really want to watch a lot of container security videos!
loading . . .
Posts by Category
This site hosts a list of talks from various conferences on the topic of Cloud Native security.
https://talks.container-security.site/categories/#kubecon-cloudnativecon-north-america-2024
1
35
10
reposted by
Greg Foss
Nick Frichette
over 1 year ago
Want to keep up to date with Datadog’s Cloud Security Research? We’ve got a starter pack for that. All of our researchers in one feed.
go.bsky.app/8XpcFm5
add a skeleton here at some point
0
38
18
hello world đź‘‹
over 1 year ago
2
14
1
you reached the end!!
feeds!
log in
