Skip to content
Product
Icon-Platform
Platform

Explore the core capabilities of the Cado Platform.

 Icon-Integrations
Integrations

Learn how the Cado platform integrates into your broader ecosystem.
Solutions
Use Cases
Icon-Cross-Cloud Investigations
Cross Cloud Investigations

Respond to incidents identified in AWS, Azure, and GCP in a single pane of glass.

 Icon-Container-Investigations
Container & K8s Investigations

Perform container investigations in EKS, AKS, GKE, and Kubernetes.

 Icon-Endpoint-Triage
SOC Triage

Automate endpoint triage for immediate insights and quick escalation.

 Icon-BEC-Compromise
SaaS Investigations

Analyze critical SaaS logs to investigate Business Email Compromise.

 Icon-Incident-Containment
Cloud Detection & Response (CDR)

Marry threat detection with forensic context to expedite response.

Icon-Evidence-Preservation
Evidence Preservation

Capture data immediately and preserve it before it disappears.
Cado For
SecOps
Incident Responders
Forensic Teams
MSSPs
Partners
Government
Resources
Icon-Report
All Resources

Explore Cado Security's entire content library.

 Icon-Blog
Blog

Timely commentary from the Cado Security team.

 Icon-Playbook
Playbooks

Best practices for investigating and responding to threats.

Icon-Cheat-Sheet
Cheat Sheets

Quick tips for investigating and responding to incidents.

 Icon-News
News

The latest Cado company announcements, press, and more.

 Icon-Community
Community

Access to our free edition of the Cado platform.

 Icon-documentation
Documentation

Technical documentation on how to best leverage the Cado platform.

 White Paper 80x80
Wiki

Everything you need to know about cloud security and cloud forensics.

Company
Icon-About
About

Learn more about the Cado Security mission, vision, and team.

 Icon-Careers
Careers

Check out current career opportunities at Cado Security.

 Icon-Incidident-Response Preparedness-II
Cado Security Labs

The research and development division at Cado Security
Get a Demo
    Get a Demo
      curve design on left

      Posts by Nate Bill

      blog post featured image
      blog icon Featured Post |

      Darktrace's Proposed Acquisition of Cado Security

      January 22, 2025

      We are excited to share the news that Darktrace has announced its proposed acquisition of Cado Security. This milestone marks a new chapter...

      Continue Reading
      cloud image
      Cloud Investigations icon
      blog icon Cloud Investigations
      Forensic Victory: Catching the Ransomware EDR Couldn't See
      February 13, 2025

      Endpoint Detection & Response (EDR) is frequently used by organizations as the first line of defense against cyber attacks....

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      Part 2: Investigating Docker Hijacking Malware - A Deep Dive into ELF Binary Analysis
      October 18, 2024

      As the adoption of containerized environments like Docker continues to rise, so does the interest of cybercriminals in...

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      Part 1: Investigating Docker Hijacking Malware - Analyzing the Docker Host with Packet and Disk Forensics
      October 17, 2024

      Docker's widespread adoption in cloud environments has made it a prime target for attackers seeking to exploit its API or...

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      WARPscan: Cloudflare WARP Abused to Hijack Cloud Services Blog
      July 17, 2024

      Cado Security researchers have observed several recent campaigns making use of Cloudflare’s WARP service in order to attack...

      Continue Reading
      Research & Threat Intel icon
      blog icon Research & Threat Intel
      From Dormant to Dangerous: P2Pinfect Evolves to Deploy New Ransomware and Cryptominer
      June 25, 2024

      Introduction P2Pinfect is a rust-based malware covered extensively by Cado Security in the past. It is a fairly...

      Continue Reading
      blog post icon
      Cerber Ransomware: Dissecting the three heads
      April 17, 2024

      Introduction Cado Security Labs recently received reports of the Cerber ransomware being deployed onto servers running the...

      Continue Reading