Pricing Login
Platform
Platform overview

SaaS analytics platform for reliable and secure cloud-native applications

More information about platform overview
Multi-cloud

Accelerate cloud migration and optimize infrastructure reliability on any cloud

More information about multi-cloud
Security
Observability
Solutions
Powerful integrations
Kubernetes GitHub AWS Blue Apache MongoDB PagerDuty AWS Lambda Google Kubernetes Engine Microsoft Azure
Comprehensive compliance
  • SOC 2 Type II
  • PCI-DSS
  • FedRAMP®
Customers
Customer stories

Trusted by thousands of customers globally.

More about customer stories
Featured customer stories

Pokémon delivers safe gaming to hundreds of millions of users.

Read Pokemon's case study

Data tiering saves Infor $1 million in one year

Read Infor's case study

Monitor and secure 10,000 clouds

Read Hashicorp's case study
Customers by industry:
Browse all
Pricing
Docs
Resources
Resource center

Browse our library of ebooks, briefs, reports, case studies, webinars & more.

More resources
Featured
Helpful Resources
2022 Gartner® Magic Quadrant™ for SIEM

Download report

More
More
2022 SOAR market guide

Read article

More
More
What is reliability management?

Watch video

More
More
New & Notable
Comply with the CERT-In Directions 2022

Read article

More
More
The ultimate race condition: Securing open source infrastructure

Read article

More
More
Scale automation for secure and reliable applications

Download paper

More
More
Log management: the key to reliable and secure applications

Read the guide

More
More
Training
Blogs
Featured
Eight best practices for a successful cloud migration

Strategy best practices

More
More
DevSecOps and log analysis

Improving application security

More
More
SIEM vs SOAR

Modern SOC tools

More
More
Too many tools?

IT tool consolidation best practices

More
More
View all blogs
Browse by Topic
2022 gartner SIEM nav resource thumb
2022 Gartner® Magic Quadrant™ SIEM

Get the report

More
Webinars
Featured
Sumo Logic quick start webinar

Get started with Sumo Logic

More
More
2022 Global SRE Pulse survey

What’s the state of SRE?

More
More
DOIF: Legacy to cloud-native architectures

What is truly cloud-native?

More
More
The role of automation in SOC response plan

The future of cybersecurity

More
More
View all webinars
Browse by Topic
2022 gartner SIEM nav resource thumb
2022 Gartner® Magic Quadrant™ SIEM

Get the report

More
Guides & reports
Featured
The state of SRE 2022

Download infographic

More
More
Why reliability management matters

Download paper

More
More
A buyer’s guide to observability

Download guide

More
More
Log management: the key to reliable and secure applications

Read the guide

More
More
SOAR: the everything guide to SOAR, tools and solutions

Read the guide

More
More
View all guides & reports
Browse by Topic
2022 gartner SIEM nav resource thumb
2022 Gartner® Magic Quadrant™ SIEM

Get the report

More
Demos & videos
Featured
Unified cloud-native platform vs Splunk

How many tools do you use?

More
More
Demo: AWS observability

Accelerating troubleshooting

More
More
What is reliability management?

SLO, SLI, SLA: Beyond alphabet soup

More
More
Demo: 3 am troubleshooting for an on-call engineer

Step-by-step process

More
More
View all demos & videos
Browse by Topic
2022 gartner SIEM nav resource thumb
2022 Gartner® Magic Quadrant™ SIEM

Get the report

More
Company
Contact
Support Contact us Start free trial
Support Start free trial

Security Response Center

Security response center

Companies of all sizes are facing heightened cyber security threats in response to state actors, increasing supply chain attacks and open source vulnerabilities. Keeping customers informed, enabled and protected is Sumo Logic's highest priority.

Recent security threat updates Start chat

Recent security threats

libwebp Vulnerability

September 28, 2023
Sumo Logic is aware of the vulnerabilities (CVE-2023-5129 and CVE-2023-4863) that Google published indicating a critical vulnerability in libwebp. We are actively investigating to identify any and all areas where we may be leveraging the vulnerable versions of this library. As of now our investigations have revealed no indications of compromise. We will keep this page up to date as our investigations continue.

MOVEit vulnerabilities

June 20, 2023
Sumo Logic is aware of the published vulnerabilities (CVE-2023-34362, CVE-2023-35036, and CVE-2023-35708) by Progress software indicating that the MOVEit Transfer tool was vulnerable to multiple SQL injection vulnerabilities. Our investigation suggests that Sumo Logic is not impacted as our products and services do not use MOVEit Transfer tool. Our current assessment is that no action is required from our customers, but we will continue to monitor and update as appropriate.

OpenSSL Vulnerability

Nov 4, 2022
Sumo Logic is aware of the recently announced OpenSSL vulnerabilities (CVE-2022-3786 and CVE-2022-3602). Our initial investigation suggests that Sumo Logic is not impacted as our products and services do not rely on OpenSSL. Our current assessment is that no action is required from our customers, but we will continue to monitor and update as appropriate.

Spring4Shell

April 1, 2022
Sumo Logic has validated that we do not use any part of the vulnerable Spring Cloud framework found in CVE-2022-22963. We have also reviewed CVE-2022-22965 and have validated that Sumo Logic is not vulnerable to known exploitable methods. Out of an abundance of caution, we will be updating our Sumo Logic Service; however, no action is required on your part. The Sumo Logic collector is not vulnerable to known Spring Cloud framework exploitation methods.


March 31, 2022
Sumo Logic is aware of CVE-2022-22963, which is an exploitable Remote Code Execution (RCE) in Spring Cloud Functions. Our initial investigation suggests that Sumo Logic is not impacted. Our current assessment is that no action is required on your part at this time, but we will continue to monitor and keep you posted as our analysis progresses.

Okta evolving situation

Our Global Operations Center investigated Okta’s evolving situation as Sumo Logic currently leverages Okta's federated identity solution. So far we have no evidence that Sumo Logic, our employees or services are impacted in any way.

Log4j/Log4Shell

Beginning early in the morning on Dec. 10th, Sumo Logic’s security team investigated and validated the nature and severity of the exploit against potential points of compromise and determined that at NO time was Sumo Logic exploited.


We use a custom SumoLog4Layout library that never invokes custom lookups (as compared to Apache Log4j) so the Sumo Logic Service was never impacted.

Recent security alert: Okta access compromised

Summary

A support engineer's laptop at the Identity and Authentication (IAM) firm, Okta was compromised

What steps has Sumo Logic taken?

Our Global Operations Center investigated Okta’s evolving situation as Sumo Logic currently leverages Okta's federated identity solution. So far we have no evidence that Sumo Logic, our employees or services are impacted in any way.

What can I do?

Customers and prospects in a currently 30-day trial can use the Okta app to determine if they are compromised and leverage Cloud SIEM targeted searches.

Sumo Logic blog: Okta evolving situation: Am I impacted?
Recent security alert: Okta access compromised

Additional Sumo Logic resources

External resources

How can Sumo Logic help?

Security 2 color

Actively monitoring current threats in real-time to ensure customers are not impacted

Manage 2 color icon

Creating easy-to-copy search queries and filters customers can use to determine if they are at risk

Queries 2 color icon

Providing security-specific onboarding to prospects in our 30-day trial to help them determine if they are compromised.

Take these steps to improve your security posture

Start a 30 Day trial

Leverage our application integrations and log ingesting capabilities to determine if your organization has been compromised

Start free trial

Talk to our security experts

Take a tour of our security capabilities and Cloud SIEM. Our team can walk you through common threat response scenarios and how to build pro-active threat monitoring.

Request demo