What's New in Graylog 6.0? | WED, MAY 22, 11am ET | Webinar >> ​

Graylog Acquires Resurface.io’s API Security Solution 

Strengthens Threat Detection and Incident Response Portfolio to address Growing API Threats


HOUSTON – July 19, 2023 –Graylog, a global provider of award-winning SIEM and log management solutions, today announced its acquisition of Resurface.io’s data-driven API security platform. The acquisition broadens Graylog’s security portfolio and delivers to enterprise customers a comprehensive API security Threat Detection and Incident Response platform to combat the evolving challenges in the API security landscape. The product will be named Graylog API Security.


As APIs have become one of the most exposed attack surfaces, the distinct expertise and innovative technologies of Resurface.io will help customers fortify their defenses against API-related threats. By building integration points between the Resurface API solution – that captures complete API traffic data for insights into attacks and threats – and Graylog’s existing SIEM solution, customers will benefit from seamless API security monitoring, threat detection, and incident response capabilities.


Graylog CEO, Andy Grolnick, stated, “APIs have rapidly become a favored attack surface for cyber criminals. Yet, not unlike the “emperor has no clothes” fable, most APIs are exposed due to lack of security monitoring, authentication issues, and other vulnerabilities. This has led to the theft of millions of personal records (PII), ransomware, and other damaging attacks. What is needed is a purpose-built API security solution that is focused on the detection of and response to API-specific threats, working in concert with a SIEM to provide a more complete defense.”

“Integrating Resurface.io’s data-driven API security solution with Graylog’s award-winning SIEM platform will empower organizations to proactively safeguard their APIs and position Graylog as the only SIEM provider offering an API Security solution,” added Grolnick. 


Unlike other API solutions, Graylog API Security works with existing Web Application Firewall (WAF) and API gateways to provide an additional layer of defense that can also address sophisticated attacks from authenticated users who often gain entry as trial users, partners, and even paying customers. This minimizes disruption to the security team with improvements to the organization’s overall security posture achieved in minutes.


Key Advantages of Graylog’s API Security solution include the following:  

  • Guided Threat Detection & Response – out-of-the-box alerts that include clear explanations and actionable steps finely tuned to each API, including OWASP Top 10 coverage
  • Continuous, Uninterrupted Monitoring – Runtime scanning provides real-time threat detection without impacting app performance no matter how many threat signatures are checked
  • Full Request AND Response Payload – Goes beyond request header data, sampling, and modeling to enable precise alerts, efficient retroactive threat hunting, incident investigation forensics, and insightful trend analysis
  • Secure Self-Managed Solution – Keeps sensitive data in-house, avoids third-party disruptions and PII concerns, and eliminates the hassle and red tape of SaaS security reviews
  • Effortless Implementation & Maintenance – The self-contained security data lake and modern Kubernetes architecture makes Implementation and maintenance easy and cost-effective for even smaller enterprises


Resurface.io’s Founder, Rob Dickinson, stated, “I am thrilled to become a part of Graylog and help contribute Resurface’s expertise in API security to their innovative portfolio. Resurface.io’s solution takes a SIEM approach to solving the API Threat Detection issue, so there are many synergies. The Resurface API technology and solution will enable Graylog to reach a broader audience, accelerate product advancements, and provide customers unparalleled API ecosystem protection.”


Graylog API Security is available immediately. To learn more and see a brief demo, visit: https://graylog.org/products/api-security/


About Graylog

Graylog Security is a game-changing cybersecurity solution that offers robust, cost-effective ways to protect your organization against cyber threats. Using AI/ML, security analytics, advanced log management, and intelligent alerting, Graylog enables you to stay ahead of threats. Unlike traditional SIEM solutions that are complex and expensive, Graylog Security is easy to use and affordable, giving you a superior cybersecurity experience. Whether you’re looking for a comprehensive cybersecurity solution or a way to streamline your IT operations, Graylog has the tools you need to succeed. For more information, visit https://graylog.org, and follow us on Twitter and LinkedIn.



Justine Schneider

Moxie + Mettle PR

[email protected]