Service accounts (Platform)
May 1, 2025
Service accounts let administrators create non-interactive accounts for managing API keys, ensuring uninterrupted API integrations even when users are offboarded. This feature improves operational continuity by decoupling API access from individual user accounts.
AWS Observability Solution v2.12.0 (Platform)
May 1, 2025
This release updates nine apps and four monitors to integrate with the new Threat Intel feed, and migrates 28 classic apps to next-gen versions for easier management. We also released an FAQ section with 14 OTRM Source Templates to simplify the creation and deployment of OpenTelemetry configurations, letting you collect and send logs and metrics from various systems directly to Sumo Logic.
Content sharing for applications (Platform)
April 28, 2025
Administrators can now control the visibility of installed app content, enabling selective access based on user roles. This feature enhances security, reduces noise, and ensures that only relevant content is visible to the right users in organizations with diverse teams and varying access needs.
Sumo Collection app (Platform)
April 21, 2025
The new Sumo Collection app provides detailed insights into the health and status of Sumo Logic collectors and sources, enabling efficient management and monitoring. With intuitive analytics and visualizations, this app helps you optimize your data collection infrastructure and proactively identify issues.
Playbook enhancements (Platform / SOAR)
April 21, 2025
Recent improvements to SOAR Playbooks enhance the user experience by preventing accidental overwrites and loss of changes. New features include dynamic field loading in node popups, confirmation dialogs for pre-existing drafts, alerts for unsaved changes, and audit logs for failed nodes during execution.
New threat intelligence source (SIEM)
April 8, 2025
We’ve added a new default threat intelligence source, SumoLogic_ThreatIntel, which incorporates Indicators of Compromise (IoC) from Intel 471. This out-of-the-box source, alongside existing feeds from CrowdStrike, enhances security analysis with third-party threat indicators maintained by Sumo Logic.
March app and cloud-to-cloud highlights (Platform)
March 31, 2025
- Netskope WebTx: A new app leveraging the Sumo Logic Cloud-to-Cloud Netskope WebTx source to collect web transaction logs, offering visibility and insights into web traffic
- Confluent Cloud Metrics Source (C2C): A new cloud-to-cloud source for collecting metric data from the Confluent Cloud Metrics platform, enabling streamlined analysis in Sumo Logic
- Azure Security Advisor: A new app to help security analysts assess Azure Advisor’s recommendations and track remediation progress to improve Azure infrastructure security
- CyberArk Audit: A new app for monitoring and visualizing audit trails of user activities, security events, and anomalies to strengthen security posture
Threat intelligence (SIEM)
March 3, 2025
Threat intelligence lets Cloud SIEM administrators import Indicators of Compromise (IoCs) directly into Sumo Logic for enhanced security analysis. This feature lets you use the ‘hasThreatMatch’ function in Cloud SIEM rules to detect threats based on IoC data, helping you stay ahead of emerging threats.
February app and cloud-to-cloud highlights (Platform)
February 28, 2025
- JumpCloud Director: A new app providing visibility into authentication events and security actions within JumpCloud-managed environments, helping track failed logins, privileged access, and account lockouts in real-time
- Code42 Incydr: A new app for monitoring and detecting potential data threats, leveraging the Cloud-to-Cloud Code42 Incydr source to collect audit and file event data
- Trust Login: A new app that monitors authentication events and user activities using the Cloud-to-Cloud Trust Login source to respond to security threats
- Sysdig Secure Source (C2C): A new cloud-to-cloud source for collecting scan results from Sysdig Secure, enabling streamlined analysis of security data
- Dragos: A new app that helps security analysts minimize cybersecurity risks and safeguard critical infrastructure by collecting vulnerability and asset logs from Dragos
- Automox: A new app for collecting audit and event logs from Automox, providing security and IT teams with enhanced visibility into endpoint management
Dynamic array handling (Platform / SOAR)
February 24, 2025
The new dynamic array handling enhancement lets you loop through arrays directly within a text area field in action nodes. You can choose to iterate through the array or process it as a comma-separated list, improving efficiency in playbook automation.
Access keys: Permission scoping (Platform)
January 16, 2025
Permission scoping for Access Keys lets you restrict access to only the necessary API endpoints, reducing security risks. This enhancement minimizes potential damage if an Access Key is compromised by applying the principle of least privilege.
Remote Configuration now supported for Sumo Logic OTEL distribution
January 14, 2025
Sumo Logic OpenTelemetry distribution will now allow for remote management of data monitoring configurations. Customers will be able to configure data collection settings directly from the Sumo UI, eliminating the requirement for server access or manual modification of YAML files. New capabilities will make it easier to manage data monitoring across deployments by using Tags and defining what to monitor with Source Templates. These new feature improvements to Sumo Logic OTEL collectors will allow users to spend more time analyzing the data and less time configuring data collection.
Kickstart data
December 12, 2024
Sumo Logic is enhancing the trial onboarding process with the introduction of pre-loaded sample data, allowing new users to immediately engage with the platform’s features without the initial need to provide their own data. This streamlined experience is designed to demonstrate the value of Sumo Logic quickly, as users can effortlessly explore interactive dashboards, carry out queries, and become familiar with the key functionalities right from the start. Trial users can access these sample dashboards through the Content library panel in the main side navigation of the classic UI, and they will be directed to them either via a modal or by finding them in the recently opened dashboards section. This addresses common onboarding hurdles such as data privacy concerns and technical intricacies of agent installation. This updated workflow not only removes early obstacles for new users but also fosters a deeper appreciation and understanding of Sumo Logic’s potential, paving the way for a smoother transition to actual data integration.
Self Serve checkout
December 12, 2024
Sumo Logic has launched a Self-Service Checkout feature which allows new signups and existing free trial users to autonomously select, and upgrade their pricing plans without the need for sales team assistance. This enhancement is part of our strategy aiming to provide an intuitive and accessible purchase experience. You can make quick adjustments to your plan in the Manage Plan section of your account page, using a secure credit card form powered by Zuora. Plans for future features include support for plan downgrades and various payment options, enabling greater flexibility and control over your use of Sumo Logic. With this new self-service model, Sumo Logic aims to improve customer satisfaction by simplifying the management of your service plan and expediting your path to obtaining value from the platform.
Universal Cloud Source
December 9, 2024
Universal Cloud sources will enable our customers to collect logs for products that provide APIs to collect data. Users can now create custom configurations using this new source by defining Authentication, Protocol, Data format and Pagination to complete setup. This new solution empowers our customers and partners to integrate with an ever growing list of products and monitor them in Sumo Logic.
Sumo Logic Mo Copilot
December 2, 2024
Sumo Logic Mo Copilot is an AI-powered assistant that accelerates investigations and troubleshooting in logs by allowing you to ask questions in plain English and get contextual suggestions, helping security first responders and on-call engineers resolve incidents faster. Copilot features:
- Ability to ask questions in plain English to generate log insights.
- View suggestions relevant to your troubleshooting and investigations context.
- Save and resume troubleshooting or investigation sessions without losing context using Conversation History.
- Auto-visualize charts from search results, which you can add directly to dashboards.
- Auto-complete natural language queries to get to insights faster.
AI-Driven Metrics Monitors
November 7, 2024
AI-Driven Metrics Monitors, an extension of our previously announced AI-driven Logs Monitors capability are now generally available. 47% of customer monitors are based on metrics data. The noisiest 5% of these monitors trigger more than 10 times per day and consume about 6.5 hours of on-call attention each day.
With over 60% false positive alerts, such monitors are a distraction from feature development. With AI-driven Metrics Monitors, customers could reduce irrelevant alerts by 80% while acting on relevant alerts that signal deteriorated application availability or performance with automated recovery. Advanced anomaly detection on metrics data enables the noise reduction outcome while recovery is enabled by playbooks associated with a monitor.
AI-driven Metrics Monitors feature:
- Built-in ML model that uses 30d of metrics history to establish baseline behavior of the metrics signal and the underlying system
- Detecting seasonality in the underlying metrics signal including hourly or daily periodicity. This is important for eliminating noise from spikes that are expected from a periodic signal.
- Auto-tuned anomaly detection that minimizes user input to configure anomaly detection parameters for the least noise and most relevance.
Playbook capabilities are compatible with both logs and metrics-based monitors and help customers automatically enrich incident context, auto-diagnose root cause and automate recovery.
Usage Management – Scan Budgets
November 7, 2024
We are happy to introduce our new Scan Budgets functionality under the Usage Management tab in the Accounts section. This feature allows you to define search limits, helping prevent unexpected charges and manage Sumo Logic credits, particularly in pay-per-use scenarios by limiting search volume.
Key features include:
- Org-wide scan budget: Set a budget for search queries that applies to all users in the organization.
- User level and Role level scan budget: Set limits on search data volume at the user and role levels.
- Flexible actions: Choose what happens when the budget limit is reached. Options include “Display a warning to the user” or “Restrict Scans”.
Enhanced data management and log handling
October 18, 2024
Over the past few months, we’ve rolled out several updates aimed at giving administrators and users greater control, precision, and flexibility in managing your data and logs:
- Customizable Log Data Forwarding: Gain flexibility in how your logs are stored by configuring the schema and format of log data sent to S3 destinations, ensuring your log exports meet your specific needs.
- Count Operator Enhancement: Count operator returns long values instead of int, allowing for more accurate calculations and support for significantly larger datasets.
- Advanced Filtering and Partition Management: Leverage advanced filters across FER, Fields, Partitions, Scheduled Views, and Data Forwarding, and seamlessly filter between User-Defined and System Partitions for faster, more intuitive navigation and management of your partitions.
These recent updates bring enhanced accuracy, streamlined management, and customizable log handling, empowering you to operate with greater efficiency and scalability.
New Unified Navigation
September 30, 2024
We’re excited to announce the release of our new unified navigation, available today for you to explore. Our new navigation provides a fresh approach, bringing observability, Cloud SIEM, and Cloud SOAR offerings together under one unified navigation system making it easier for you to find, access and switch between the most commonly used features of the platform.
Along with the navigation we have moved to native browser tabs for managing your different open views within Sumo Logic, allowing you to take better advantage of the full features of your browser, and improving performance when loading or switching between different features of the platform.
You can try the new experience by selecting the “Switch to new UI” button found within the main navigation of the classic interface. If you wish to switch back, simply click “Return to Classic UI” from the new UI primary navigation.
AWS Observability v2.9.0
August 7, 2024
We’re excited to unveil AWS Observability 2.9.0, now featuring support to analyze and monitor RDS MS SQL CloudWatch logs, with new monitors bringing the total to 70 out-of-the-box monitors. This release also includes automatic CloudFormation deployment telemetry to Sumo Logic (with an opt-out option) as well as brings reduced installation time via the CloudFormation template.
Sumo Orgs – New credits management experience
July 26, 2024
We are excited to introduce a new and enhanced credits management experience for our Sumo Logic orgs customers. This update empowers Sumo Logic parent org admins to manage child org credits with greater ease and control. Here are the key improvements in this update:
- Flexible allocation. Parent org admins can now allocate and manage credits for child orgs more flexibly, with faster and fewer steps.
- Smart recommendations. Receive system-suggested credit allocations tailored to your needs.
- Effortless top-ups. Seamlessly top-up credits for child orgs upon depletion without needing baseline adjustments.
Discover the new features in AWS Observability
July 10, 2024
We are thrilled to introduce AWS Observability 2.8, featuring new out-of-the-box dashboards for PostgreSQL based on Amazon RDS logs, a redesigned Amazon API Gateway with enhanced metrics and log-based dashboards for REST, HTTP, and WebSocket API types, over 20 new out-of-the-box monitors, and significant improvements in deployment time to streamline your monitoring experience on AWS.
Collect logs from Azure at Scale
March 28, 2024
Collecting data at scale is in Sumo Logic DNA and we are extending that to collecting data from Azure. Our integration with Azure Event hubs provides our customers a fully managed, scalable, and low latency solution to stream high volume logs from Azure to Sumo Logic. With this new source you can monitor high volume logs like endpoint , audit and load balancers with low latency and alert on findings in near real time.
AI-driven alerts
March 12, 2024
We are excited to announce AI-driven alerts. This innovation combines patent-pending anomaly detection to monitor unusual application / security conditions in logs, alert a first responder and help them diagnose and recover quickly through automated playbooks.
Anomaly monitors help focus customer attention on real incidents and minimize distraction from false alarms. Playbooks powered by Sumo Logic Automation Service can be triggered by such alerts to accelerate incident diagnosis and recovery. AI-driven alerts also feature one-click set up to connect anomaly monitors to one or more playbooks. Moreover, first responders can view playbook execution within the Alert Response page itself.
Sumo Orgs: New View for Child Orgs Usages
February 1, 2024
We’re excited to announce a powerful upgrade for Sumo Orgs customers: a centralized view of all child org usage within your accounts page! This update streamlines your experience and empowers you to manage your multi-org environment with greater efficiency. Now you can:
- Consolidated Insights: Gain a comprehensive overview of child org credit consumption and usage trends, all in one place.
- Dive deeper: Drill down effortlessly for granular insights into individual child orgs, identifying areas for optimization.
- Stay informed: Export detailed usage data for any timeframe, empowering informed decision-making.
Cloud Infrastructure Security for AWS
January 24, 2024
We are thrilled to announce the availability of Cloud Infrastructure Security for AWS, a Sumo Logic product offering that allows Cloud Operations, Security Engineers and developers to get a comprehensive view of threats, misconfigurations and suspicious activity in their AWS environment and take remedial steps through automated playbooks.
Need to understand your user experience better?
Learn how you can optimize your digital customer experience across your web apps.
