DetectFlow: Deploying Detections at Scale Without the Engineering Overhead
The Problem: Achieving Threat Detections at Scale At SOC Prime, we have spent over a decade making detection engineering easier…
Threats
UAC-0247 Attack Detection: AGINGFLY Malware Targets Hospitals, Local Governments, and FPV Operators in Ukraine
Phishing remains one of the most effective tactics in the cybercriminal playbook, particularly when attackers exploit urgent humanitarian themes, trusted…
UAC-0255 Attack Detection: Threat Actors Impersonate CERT-UA to Infect Ukrainian Public and Private Sector Organizations With AGEWHEEZE RAT
Phishing remains one of the most effective tools in the cybercriminal arsenal, especially when threat actors abuse the credibility of…
Telemetry Pipeline: How It Works and Why It Matters in 2026
A telemetry pipeline has become a core layer in modern security operations because teams no longer send data from applications,…
CVE-2026-20643: Vulnerability in WebKit Navigation API May Bypass Same Origin Policy
Just a little over a month after fixing the actively exploited CVE-2026-20700 zero-day, Apple has now issued its first Background…
Observability Pipeline: Managing Telemetry at Scale
Observability began as a visibility problem. Yet, today it is framed just as much as a control challenge because teams…
CVE-2026-3910: Chrome V8 Zero-Day Used for In-the-Wild Attacks
Chrome zero-days continue to pose a major risk for cyber defenders. Earlier this year, Google patched CVE-2026-2441, the first actively…
CVE-2026-21262: SQL Server Zero-Day Fixed in Microsoft’s March Patch Tuesday Release
The beginning of 2026 has brought a wave of zero-day vulnerabilities affecting Microsoft products, including the actively exploited Windows Desktop…
SOC Prime Launches DetectFlow Enterprise To Enhance Security Data Pipelines with Agentic AI
BOSTON, MA — March 12, 2026 — SOC Prime today announced the release of DetectFlow Enterprise, a solution that brings…
SIEM vs Log Management: Observability, Telemetry, and Detection
Security teams are no longer short on data. They are drowning in it. Cloud control plane logs, endpoint telemetry, identity…