Live Training | What's New in Lumu Defender

Already have an account? Sign in

Sign in

Log Tampering Detections

July, 2026

Before launching a major offensive like ransomware, attackers often try to silence your defenses by clearing or disabling system logs. To eliminate this critical blind spot, Lumu has introduced a brand-new incident type: Log Tampering Detections.

Lumu now monitors your endpoints in real-time, alerting your security team the moment an adversary attempts to evade signature-based detection.

What's New

  • Cleared Log Alerts: Instantly see you if an adversary wipes historical event logs to erase their forensic trail.
  • Disabled Logging Detection: Catches when background logging services are deliberately halted to prevent malicious actions from being recorded.
  • Modified Records: Identifies quiet, targeted alterations designed to erase traces of the adversary’s footprint while leaving the rest intact 

By surfacing these stealthy evasion techniques as incidents, Lumu gives your SOC the precise visibility and context to immediately isolate the asset and contain the threat before encryption or data exfiltration happens.

To learn more about this new detection you can access our documentation here.

Join our pre-day 
workshop waitlist

By clicking “Submit Request” you agree to the Lumu Terms of Service and Privacy Policy.