Certain npm packages were infected with self-replicating malware known as the "Shai-Hulud” worm. At this time, Elastic has found no evidence of compromise within Elastic’s software environment. Learn about our proactive defense.

On Aug 26, 2025, Salesloft Drift disclosed a security incident. Though Elastic wasn't notified of impact, we use Drift, so we promptly launched incident response protocols to assess any potential impact to our systems and customer data.

Our CISO, Mandy Andress, shares insights on how AI is helping the cybersecurity world shift from reactive to proactive defense. See how AI's real-time analysis enhances threat detection, promotes adaptive security, and enables antifragility.

See what Elastic’s CISO thinks about the major findings from the Global Threat Report, and her suggestions for how CISOs can communicate this information.

See how Elastic CISO Mandy Andress is using key findings from the 2023 Elastic Global Threat Report to prepare her teams for the upcoming year.

By understanding their organization's DNA and cultivating a collaborative security culture, CISOs can make an indelible impact on their organization's cybersecurity resilience while maximizing their personal performance.

With our new Elastic Security Value Calculator, you can easily estimate how Elastic can drive financial gains for your organization. Based on your results, you’ll know how Elastic Security creates efficiencies for you.

The recent "meow bot" attacks are the most recent example of cybercrime targeting sensitive customer data. Damaging attacks like these can be avoided with the free security features included in Elastic products.

The Elastic InfoSec team's internal use of Elastic Security has increased visibility and exponentially expanded its response capabilities to threats.