In 2025, Lumu introduced significant advancements across its entire security operations workflow, focusing on visibility, detection, response, and incident management. We launched the Lumu SecOps Platform, integrating key solutions such as Lumu Defender, Autopilot, Discover, Archive, and Maltiverse. As cyber attacks have grown more complex, Lumu responded by enhancing network visibility across multiple environments, adding new collection methods like cloud-based NDR and Chromebook coverage. Additionally, Lumu Discover was introduced to give security teams continuous insights into external exposures, including shadow IT, SaaS risks, and compromised credentials.
Detection and response capabilities were also heavily upgraded to help security teams manage threats more efficiently. Lumu Defender now identifies richer incident types, such as unusual logins and network brute force activities, while allowing faster investigations through a natural language filter. For incident management, Lumu Autopilot leverages AI-driven automation to enrich incidents with context, correlate related activities, and provide clear step-by-step remediation guidance. Finally, Lumu Archive was rolled out to offer efficient, long-term log retention and querying capabilities without the complexity of traditional SIEM solutions, ensuring better compliance and continuous improvement.
Takeaways
- Lumu expanded visibility with new collection options, including cloud-based NDR and Chromebook coverage.
- Lumu Discover was launched to provide continuous visibility into external exposure such as compromised credentials and shadow IT.
- Lumu Defender evolved its detection to surface actionable incidents like unusual login and network brute force activity.
- Lumu Autopilot received an AI upgrade to enrich incidents, correlate activity, and recommend mitigation steps.
- Lumu Archive was introduced for efficient long-term network log storage without SIEM complexity.
