Qevlar AI Blog

Everything you need to run a high-performing, low-friction SOC

How to detect incidents in an avalanche of alerts: a real case

How to detect incidents in an avalanche of alerts: a real case

Meet Qevlar Incidents: AI Correlation that groups related malicious activity into a single, prioritized investigation, across any source in your stack.

Read article
Arrow right black
All
Qevlar Introduces AI Agents Unifying SOC and Vulnerability Operations as Exploitation Windows Collapse

Qevlar AI Introduces AI Agents Unifying SOC and Vulnerability Operations

Announcing the new capabilities that will enable security teams to correlate CVEs with live incident data for real-time risk prioritization, automatically identify asset owners to accelerate remediation, and autonomously hunt for active CVE exploitation. Expected by Fall 2026.

Read article
Arrow right black
All

All our articles

Filter by tag :
Top 3 AI SOC Solutions in 2026: Which One Fits Your SOC?
AI

Top 3 AI SOC Solutions in 2026: Which One Fits Your SOC?

SOC leaders in 2026 are staring at a market with 150+ AI tools and one very expensive decision to get right. So we put together a practical AI SOC Guide 2026 to help you out: → A breakdown of AI SOC solutions across 3 core categories → Common gaps between demo environments vs real-world SOC performance → The criteria security leaders are using to make six- and seven-figure platform decisions in 2026

Read article
Arrow right black
All
The SOC as the enabler of a self-healing posture
AI

The SOC as the Enabler of a Self-Healing Posture

Most SOCs measure success by closing alerts. This article explains why that's not the right model. When every investigation starts from scratch and analyst knowledge disappears the moment a ticket closes, the SOC becomes institutionally amnesiac. The fix is in building an architecture where every investigation makes the next one smarter, a defensive posture that compounds, rather than resets.

Read article
Arrow right black
All
How Qevlar AI Follows Every Observable Until the Full Attack Is Visible
Product

How Qevlar AI Follows Every Observable Until the Full Attack Is Visible (Real Case Study)

When a CrowdStrike alert catches a suspicious executable, the instinct is to confirm it's malicious, quarantine it, and close the ticket. But what if the file was just the last step in a chain that started weeks earlier, and that chain is still active? In this real anonymized case, Qevlar AI starts from one EDR alert and autonomously surfaces 7 new observables, tracing a coordinated phishing campaign targeting 40 employees, an active account takeover, and an attacker already inside the network.

Read article
Arrow right black
All
Sopra Steria Integrates Qevlar AI into Its MDR Offering
Cybersecurity

Sopra Steria Integrates Qevlar AI into Its MDR Offering

Sopra Steria has partnered with Qevlar AI to integrate it into its Managed Detection & Response offering to automate SOC investigations and reduce operational noise. Discover how this collaboration improves efficiency, eliminates false positives, and empowers analysts to focus on critical threats with the leading European AI technology.

Read article
Arrow right black
All
How Qevlar AI Would Expose ClawHavoc
Cybersecurity

Caught Red-Clawed: How Qevlar AI Would Expose ClawHavoc Campaign

OpenClaw has become one of the most exploited attack surfaces in enterprise environments, and most SOCs aren't ready. Based on a real threat pattern from the ClawHavoc campaign, this article walks through how a poisoned third-party skill hides inside low-severity alert noise, steals credentials, and establishes persistence before anyone looks twice. We show exactly how Qevlar AI investigates every alert, regardless of severity, and catches what manual triage misses.

Read article
Arrow right black
All
Qevlar AI raises $30M
AI

Qevlar AI raises $30M to shift security operations from alert firefighting to organization-level security insights

Qevlar AI has raised $30M to accelerate the development of its autonomous AI SOC platform, helping security teams move beyond alert firefighting and turn investigations into insights that strengthen overall security posture.

Read article
Arrow right black
All
How to apply business context to alert investigation
Product

How to Autonomously Apply Business-Critical Context to All Relevant Investigations (Real Use Case)

See how pre-configured business context turns a 20-minute manual investigation into a 3-minute automated analysis. This real case study demonstrates how Qevlar Memory eliminates repetitive context gathering, allowing your security team to configure organizational knowledge once and apply it automatically to every relevant alert.

Read article
Arrow right black
All
AI Readiness in the SOC Exists, But Not the Way You Define It
AI

AI Readiness in the SOC Exists, But Not the Way You Define It

In this interview, Rafal Kitab, Director of SecOps and Incident Response at ConnectWise, discusses building effective AI-powered SOCs: the critical foundations, avoiding hidden inefficiencies, and why junior analysts thrive with AI assistance.

Read article
Arrow right black
All
I-Tracing Partners with Qevlar AI to Scale Managed Security Services in Europe
Cybersecurity

I-TRACING Partners with Qevlar AI to Scale Managed Security Services in Europe

I-TRACING, ranked among the Top 10 MSSPs worldwide, has partnered with Qevlar AI to scale its managed security services with an AI SOC platform. Qevlar AI will be deployed across allI-TRACING Security Operation Centers (SOCs), expanding the scope and depth of threat investigations delivered to more than 600 customers.

Read article
Arrow right black
All
How to investigate phishing with ai
Product

Investigate Phishing Alerts in 3 Minutes with Qevlar AI (Real Case Study)

Phishing investigations typically take 20+ minutes of manual analysis across multiple security tools. This case study shows how Qevlar AI autonomously completes the entire investigation — from reported email to compromised account discovery —in just 3 minutes.

Read article
Arrow right black
All
How Qevlar AI Prevented the Tamperedchef Attack
Cybersecurity

The Wolf in Sheep's Clothing. How Qevlar AI Prevented the TamperedChef attack

Discover how Qevlar AI stopped the TamperedChef malware attack in 4 minutes for its partners. TamperedChef turned out to be a global threat disguised as legitimate software, affecting 100+ organizations worldwide.

Read article
Arrow right black
All
10 predictions about AI in security operations
Cybersecurity

AI in SOCs 2026: 10 Predictions Every Security Leader Should Prepare For

Explore key AI security predictions for 2026, covering how autonomous SOC agents, automated remediation, and investigation-centric architectures are redefining how enterprises and MSSPs operate at scale.

Read article
Arrow right black
All
ai for gathering context in threat investigations
Product

7 Ways AI Helps SOC Teams Gather Context In Threat Investigations

Context is what turns alerts into actionable investigations. This article breaks down 7 concrete ways AI SOC platforms like Qevlar AI autonomously gather technical, historical, and business context during threat investigations. Learn how AI-driven enrichment eliminates manual effort, accelerates investigations to minutes, and helps SOC teams focus on what truly matters.

Read article
Arrow right black
All
How to hire soc analysts that won’t quit
Cybersecurity

The Great SOC Lie: Why We Hire Hunters and Turn Them Into Gatherers

SOC hiring fails because the job analysts are promised is not the job the workflow delivers, making them quit within a year. Use your budget wiser: let autonomous AI handle triage, and have your analysts focus on strategic work. Read the full article to discover how it works.

Read article
Arrow right black
All
how to choose the best ai solution
Cybersecurity

AI SOC solutions market: what has changed in 2025 and how to choose the best AI solution for your SOC

What used to be a category defined by “AI copilots” and triage assistants has now evolved into a crowded landscape of agentic triage, investigations, and attempts at autonomous response. This guide breaks down what really changed in 2025 and how to evaluate the tools behind the hype.

Read article
Arrow right black
All
how to connect it, ot, and cloud
Cybersecurity

The Realistic Path to Cyber Defense Across IT, OT, and Cloud

Most enterprises talk about unifying IT, OT and cloud security, but very few actually pull it off. In this interview, Ahmed has invited Daniel Kästle, former Head of Cyber Defense at Mercedes-Benz, to break down what it really takes to move from three isolated security worlds to a risk-driven cyber defense capability.

Read article
Arrow right black
All
How False Positive Tuning Creates False Negatives
Cybersecurity

The Hidden Danger of Weak Signals. How False Positive Tuning Creates False Negatives

Reducing false positives feels necessary, but aggressive alert tuning creates blind spots where low-and-slow attacks thrive. Learn why modern SOCs must rethink tuning, how weak signals get suppressed, and how AI can investigate every alert at scale to eliminate visibility gaps.

Read article
Arrow right black
All
Qevlar AI and SOAR: Different Roles, One Mission
Cybersecurity

Qevlar AI and SOAR: Different Roles, One Mission

Qevlar AI enhances your SOAR by delivering adaptive, end-to-end alert investigations, reducing playbook maintenance, and giving SOC teams faster, more contextual decisions. Learn how pairing Qevlar AI with SOAR cuts noise, boosts consistency, and improves incident response.

Read article
Arrow right black
All
The Multi-Tenant Challenge: How MDR Providers Maintain Detection Quality Across Hundreds of Different Environments
Cybersecurity

The Multi-Tenant Challenge: How MDR Providers Maintain Detection Quality Across Hundreds of Different Environments

In this interview, Beatrice Francon, Director of MDR Services at Atos, joins Ahmed Achchak (CEO and co-founder of Qevlar AI) to unpack how Atos scales investigative quality across diverse client environments — from critical infrastructure to finance and healthcare — without losing the human context that defines great security operations.

Read article
Arrow right black
All
Should SOCs Drop Tiered Models Altogether?
AI

Should SOCs Drop Tiered Models Altogether?

Tier 1, Tier 2, Tier 3 — the hierarchy every SOC grew up with. But as AI takes over triage and investigation, does that model still make sense? In this interview, Ahmed Achchak talks with Rob van Os, Strategic SOC Advisor and creator of the SOC-CMM framework — one of the most widely adopted models for assessing and improving SOC maturity worldwide. Together, they unpack whether modern AI-driven operations make the tiered model obsolete, how skills-based SOCs are emerging, and what this shift means for talent, economics, and trust in AI-assisted decisions.

Read article
Arrow right black
All
Atos Further Augments the AI Tooling of Its Cybersecurity Teams with ‘Virtual SOC Analyst’ Powered by Qevlar AI
Cybersecurity

Atos takes a step forward on the AI augmentation for its Cyber security services with “Virtual SOC Analyst” powered by Qevlar AI

Atos and Qevlar AI announce a global strategic partnership to integrate Qevlar’s autonomous threat investigation AI into Atos’ cybersecurity operations, enhancing efficiency, trust, and compliance through Responsible AI and human-in-the-loop governance. Discover the full story.

Read article
Arrow right black
All
Orange Cyberdefense Enhances Its Detection Capabilities with Qevlar AI’s Solution
Cybersecurity

Orange Cyberdefense Enhances Its Detection Capabilities with Qevlar AI’s Solution

We are proud to announce the partnership with Orange Cyberdefense, Europe's leading cybersecurity service provider. Qevlar AI will be gradually integrated across all 36 Security Operation Centers worldwide delivering a response in production to rising alert volumes, while keeping humans focused where their impact is highest: judgment and decisions. Read the full article to discover the story.

Read article
Arrow right black
All
Qevlar AI Recognized in Gartner’s  Emerging Tech Impact Radar: Global Attack Surface Grid
Cybersecurity

Qevlar AI Recognized in Gartner’s Emerging Tech Impact Radar: Global Attack Surface Grid

Qevlar AI has been recognized by Gartner as an honoured vendor in the Emerging Tech Impact Radar: Global Attack Surface Grid for its work in agentic remediation. AI-driven threat analysis and response. With adoption projected to exceed 15% in the next 3–6 years, Qevlar’s technology empowers enterprises and MSSPs to resolve up to 80% of alerts autonomously, reducing remediation time and easing cybersecurity talent shortages.

Read article
Arrow right black
All
Meet Qevlar Memory: Turn SOC Internal Wisdom Into Investigation Superpowers
Product

Meet Qevlar Memory: Turn SOC Internal Wisdom Into Investigation Superpowers

Forget scattered notes and lost tribal knowledge. Qevlar Memory lets your SOC team record critical context once and use it everywhere, ensuring fewer false positives, clearer investigations, and faster onboarding for new analysts.

Read article
Arrow right black
All
Shifting Detection Left in the Kill Chain: How AI Can Reduce False Negatives
AI

Shifting Detection Left in the Kill Chain: How AI Can Reduce False Negatives

While security teams drown in false positive alerts, the real threats slip through undetected. Shane Shook, venture partner at Forgepoint Capital with 30+ years in cybersecurity, explains why the industry's obsession with reducing false positives is creating dangerous blind spots, and how AI can finally solve the false negative problem.

Read article
Arrow right black
All
Study Results: How Stable Are LLMs for Alert Investigations?
AI

Study Results: How Stable Are LLMs for Alert Investigations?

Security leaders are increasingly asked whether LLMs can be trusted inside the SOC. The real challenge isn’t speed or cost, it’s variability. Same alert. Same inputs. Yet the investigation path changes, steps are skipped, and conclusions don’t always align. Our research breaks down the results of a large-scale experiment (18,000 investigations) that reveals the limits of stochastic intelligence in security operations, and why trust in AI for the SOC must start with reproducibility, not probability.

Read article
Arrow right black
All
The Tesla vs. Waymo of Cybersecurity: Why Security Operations Can't Rely on Pure AI
AI

The Tesla vs. Waymo of Cybersecurity: Why Security Operations Can't Rely on Pure AI

What do Teslas and Waymos have to do with cybersecurity? A lot. This article explores why SOCs can’t rely on pure AI alone, and why the future of defense depends on balancing speed with certainty.

Read article
Arrow right black
All
The MSSP vs. Enterprise Divide: How Autonomous AI Changes the SOC Service Model
AI

MSSP vs. Enterprise SOC: How Autonomous AI Changes the SOC Service Model

Erik Bloch (the VP of Security at illumio, ex-SOC leader at Salesforce) shares how MSSPs and enterprise SOCs can tackle AI differently, the hidden process gaps slowing progress, and why fixing repetitive work beats chasing flashy threats. Read the full interview.

Read article
Arrow right black
All
Making AI Useful in the SOC: Data, Metrics & Human Skills with Dr. Anton Chuvakin @ Google Cloud
AI

Designing AI systems As Collaborative Agents For Real Problems

Google Cloud’s Dr. Anton Chuvakin and Qevlar AI’s CEO Ahmed Achchak cut through the hype, explaining why data quality (not AI itself) is the true barrier to automation, and what skills security teams will still need in an AI-augmented future.

Read article
Arrow right black
All
Qevlar AI Hosts European Dinner Series to Explore AI's Role in Future Security Operations
AI

Qevlar AI Hosts European Dinner Series to Explore AI's Role in Future Security Operations

Discover the details about Qevlar AI's intimate dinners across six European countries with top CISOs and cybersecurity leaders, along with the practical insights that were discussed.

Read article
Arrow right black
All
Qevlar AI Wins 2025 MSP Today “Product of the Year Award

Qevlar AI Wins 2025 MSP Today “Product of the Year" Award

Qevlar AI wins the 2025 MSP Today Product of the Year Award for its "AI SOC Analyst for MSSPs," recognized for innovative, automated threat detection that empowers managed service providers to scale securely and efficiently.

Read article
Arrow right black
All
Quishing: What It Is, Why It Works, and How to Detect It with Qevlar Eye
Cybersecurity

Quishing: What It Is, How It Works, and How to Detect It with Qevlar Eye

What is quishing? Discover how cybercriminals use QR codes for phishing attacks and how Qevlar AI investigates and stops these threats before they cause damage.

Read article
Arrow right black
All
AI vs Automation in the SOC: What Security Leaders Need to Know
AI

AI vs Automation in the SOC: What Security Leaders Need to Know

Discover how AI is transforming Security Operations Centers from rigid SOAR playbooks to autonomous SOC agents. In this in-depth interview, Qevlar AI’s CEO Ahmed Achchack and Snyk’s SecOps lead Filip Stojkovski unpack what real AI-driven security looks like, how to measure its ROI, and what questions CISOs must ask before adoption

Read article
Arrow right black
All
“We’re Not Ready for AI” — The Most Expensive Myth in Cybersecurity
AI

“We’re Not Ready for AI” — The Most Expensive Myth in Cybersecurity

Many security leaders delay AI adoption, citing readiness concerns, but this hesitation comes at a high cost. This article explains why waiting for "perfect conditions" is a myth, what it’s costing organizations, and how to practically assess and begin your AI cybersecurity journey today.

Read article
Arrow right black
All
The Fundamental Limits of LLMs in Security Operations: Why Coverage Can't Be Prompted
AI

The Fundamental Limits of LLMs in Security Operations: Why Coverage Can't Be Prompted

A fresh perspective on why security alerts are just starting points, how LLMs fall short in investigations, and what it takes to achieve full coverage in your SOC.

Read article
Arrow right black
All
Almond uses Qevlar AI to cut MTTR under 5 minutes and automate 80% of cyber alert responses
Cybersecurity

Almond uses Qevlar AI to cut MTTR under 5 minutes and automate 80% of cyber alert responses

Discover how Almond, a leading French MSSP, uses Qevlar AI to become more effective on the defense side in the advanced threat landscape.

Read article
Arrow right black
All
The SOC Analysts Of The Future: New Skills For The New Shift
Cybersecurity

The SOC Analysts Of The Future: New Skills For The New Shift

AI is transforming security operations from alert-driven to strategic. Explore the essential skills future SOC analysts need as automation handles routine tasks, allowing human experts to focus on complex judgment, threat hunting, and business-aligned security leadership.

Read article
Arrow right black
All
The Multiplier Effect: How AI SOC Analysts Scale Security Teams Without Adding Headcount
AI

The Multiplier Effect: How AI SOC Analysts Scale Security Teams Without Adding Headcount

CISOs face a scaling paradox: rising threats, shrinking bandwidth. This deep dive shows how AI SOC analysts help security teams do more with the talent they already have.

Read article
Arrow right black
All
Qevlar Eye: Closing the Visual Gap in SOC Detection

Qevlar Eye: Closing the Visual Gap in SOC Detection

Discover how Qevlar Eye closes the visual detection gap in SOCs by identifying phishing pages, fake invoices, and brand impersonations that traditional tools miss — using cutting-edge Visual Language Models (VLMs).

Read article
Arrow right black
All
Qevlar AI Raises $14M to Supercharge Security Operations Centres with Agentic AI

Qevlar AI Raises $14M to Supercharge Security Operations Centres with Agentic AI

We are proud to announce that we have raised $14M to accelerate our mission to advance the productivity of SOC teams by empowering them to prioritise and respond to cyber threats effectively. Read the full article to discover our founders' vision and what the customers have to say about the impact we've been delivering to their SOC teams.

Read article
Arrow right black
All
Real-World Results: Qevlar AI Proves Accuracy & Speed
Product

Real-World Results: Qevlar AI Proves Accuracy & Speed

Email triage is one of the most relentless challenges in SOC operations. Qevlar is on a mission to remove the burden of repetitive tasks away from analysts so they can focus on security engineering.

Read article
Arrow right black
All
How Qevlar AI leverages open source LLMs
AI

How Qevlar leverages open source LLMs

Qevlar AI combines proprietary models with open source LLMs like Llama, following an incubation hosted by Meta and HuggingFace.

Read article
Arrow right black
All
MSSP Nomios integrates Qevlar AI into its 7 SOCs

MSSP Nomios integrates Qevlar AI into its 7 SOCs

Nomios integrates Qevlar AI to cut investigation times from 30 minutes to 3, boosting SOC productivity. Now also a reseller, Nomios expands access to Qevlar's AI solutions across Europe.

Read article
Arrow right black
All
What it takes to run a 24/7 SOC
Cybersecurity

What it takes to run a 24/7 SOC

Although unavoidable in some industries, managing a 24/7 SOC is becoming increasingly complex.

Read article
Arrow right black
All
SOCs are failing by design
Cybersecurity

SOCs are failing by design

CEO Ahmed Achchak on how AI-driven automation can free SOCs from the alert-centric trap, empowering analysts to shift from reactive triage to strategic defence.

Read article
Arrow right black
All
What the SOC: discussion with a SOC specialist
Cybersecurity

My discussion with a SOC specialist

My discussion with a SOC specialist on the evolution of automation in Security Operations.

Read article
Arrow right black
All
What the SOC: behind the tools powering Blue Teams
Cybersecurity

Behind the tools powering Blue Teams

Decoding the SOC Toolbox: SIEM, SOAR, EDR & More — what they do and how they connect

Read article
Arrow right black
All
Qevlar AI joins Microsoft's GenAI Studio
AI

Qevlar AI joins Microsoft's GenAI Studio

Qevlar AI was selected by Microsoft to be part of their GenAI studio. Here’s why our participation makes perfect sense.

Read article
Arrow right black
All
The last mile problem
Cybersecurity

The last mile problem

The most critical component of cyber risk remains undefined. This isn't a failure of effort or investment, but a fundamental challenge inherent to the nature of cybersecurity.

Read article
Arrow right black
All
Qevlar AI Achieves SOC 2 Certification

Qevlar AI Achieves SOC 2 Certification

Following an audit by Prescient Assurances, we are thrilled to announce that Qevlar is officially SOC 2 type 1 compliant.

Read article
Arrow right black
All
Addressing SOC analysts’ top 5 challenges
Cybersecurity

Addressing SOC analysts’ top 5 challenges

At Infosecurity Europe 2024, the keynote held by Ahmed, CEO of Qevlar AI, on the top 5 challenges faced by SOC analysts drew a full house.

Read article
Arrow right black
All
Orange Cyberdefense cybersecurity startup challenge winners
Cybersecurity

OCD cybersecurity challenge winners

Qevlar AI won the prize organised by Orange Cyberdefense as part of Vivatech 2024, one of Europe's largest technology conferences.

Read article
Arrow right black
All
Social Engineering Attack In-Depth: AI Offense vs. AI Defense
Cybersecurity

Social Engineering Attack In-Depth: AI Offense vs. AI Defense

AI is changing the cybersecurity game, but how are hackers leveraging this tech? Learn how AI can be both a weapon and a shield in the digital battleground.

Read article
Arrow right black
All
5 Most Useful GPTs For Cybersecurity Teams
Cybersecurity

5 Most Useful GPTs For Cybersecurity Teams

Discover the top GPTs for cybersecurity teams at the GPT Store by OpenAI. Featuring tools like Betterscan.io AI Code Analyzer and HackTricksGPT.

Read article
Arrow right black
All
How U.NEAT Scaled Managed Security Operations Without Compromising on Speed or Quality
Cybersecurity

How U.NEAT Scaled Managed Security Operations Without Compromising on Speed or Quality

Automate alert investigations with Qevlar AI for MSSPs to enhance response time, reduce manual tasks, and improve security service quality.

Read article
Arrow right black
All
Exploring Open Source Frontiers: Qevlar AI's Venture with Meta, HuggingFace & Scaleway
AI

Exploring Open Source Frontiers: Qevlar AI's Venture with Meta, HuggingFace & Scaleway

Qevlar AI joins Station F’s AI startup program, partnering with Meta, Hugging Face, and Scaleway to revolutionize security operations through automation.

Read article
Arrow right black
All
On a mission to scale security operations
Cybersecurity

On a mission to scale security operations

Qevlar AI redefines cybersecurity ops with autonomous agents for efficient investigations, shifting focus from laborious tasks to rapid response strategies.

Read article
Arrow right black
All
Securing AI Operations through the Integration of Cybersecurity Technologies
Cybersecurity

Securing AI Operations through the Integration of Cybersecurity Technologies

Thierry MOTSCH, an experienced cybersecurity expert, discusses securing AI ops amid industrialization and cloud adoption, emphasizing risk analysis and proactive measures.

Read article
Arrow right black
All
Silencing the Noise: A Vision for a More Focused and Efficient Future in SOCs
Cybersecurity

Silencing the Noise: A Vision for a More Focused and Efficient Future in SOCs

Revolutionizing Security Operations Centers (SOCs) with AI-powered autonomous agents to streamline alert processing and empower analysts for proactive threat response. Join us in shaping the future of cybersecurity. Get in touch for collaboration opportunities.

Read article
Arrow right black
All
Why Automating Investigation in the SOC is the Key to Future-Proofing Cybersecurity Operations
Cybersecurity

Read article
Arrow right black
All
The secret equation of remediation: why this isn't the real challenge
Cybersecurity

The secret equation of remediation

Discover our CEO's mathematical take on remediation: a deterministic function bon from complex investigation

Read article
Arrow right black
All
No result found
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Subscribe to our newsletter

Get started with our pilot program. See results immediately

Book a demo
Home
>
Post
Qevlar AI
ProductIntegrationsSOC & Vulnerability
SolutionsPhishingNetworkIdentityCloud
For MSSPsFor Enterprise
Company
AboutBlogWhitepapersCareersFAQ
Legal
Terms and conditionPrivacy policy
Book a demo call with us
Cross icon