Huntress

Even in 2021, the epic antivirus battles continue! And among one of the leading contenders is (yes I’m saying it): Microsoft Defender…

What if technology never changed? On the plus side, there wouldn’t be constant updates to contend with, no new blogs to read about the…

As the year-that-must-not-be-named comes to a close, we’ve decided to take a look back at some of the more interesting — and innovative —…

The TrickBot malware family has sustained its status as a worthy adversary in the world of cybersecurity since 2016. Even after a recent…

Thanksgiving 2015: I was a punk with hacking skills but hardly knew SMB security (let alone MSPs). The MSP community had SMB skills but…

Let’s face it — even the best cybersecurity tools won’t configure and sell themselves.

Creating accessible (and actionable) cybersecurity education is a huge part of our mission at Huntress — and last week, we were thrilled…

One of the most common targets of phishing and Business Email Compromise are Microsoft 365 / Office 365 credentials. Although most…

Imagine if the Empire knew that there was a flaw in the Death Star’s thermal exhaust port. How would this change the events of the SW…

Huntress ThreatOps

From CryptoLocker to Locky to Sodinokibi to Maze, ransomware has been a staple in the hacker-verse for a long time. For defenders, the…

When I first joined Huntress, what drew me to this company was not just the people and their passion for their work; I was enamored by the…

Hiding a malicious payload in a file meant to look like a log.

Attackers will sometimes “key” the malware for a particular host or user, meaning the malware will only run on the targeted host…

Think about all the things you can buy and do on the dark web.

Thanks to the efforts of multiple MSP partners, our team was notified about a zero-day vulnerability posted to PacketStorm for SolarWinds…

In computer security, responsible disclosure is a vulnerability disclosure model in which an issue is publicly disclosed only after a…

This week we had the opportunity to help an MSP partner contain and remediate an Emotet/TrickBot infection that impacted a client with 50+…

If you’ve ever taken a look inside the Huntress Agent directory you may have noticed the file wyUpdate.exe . This executable is wyUpdate…

It is only a matter of time before hackers exploit BlueKeep to wreak havoc on a network. Learn what you need to know to protect your hosts.

The Huntress ThreatOps team sees all sorts of clever tricks attackers use to launch PowerShell.

There’s not a day that goes by where I don’t hear cringe-worthy stories of sales tactics peddling FEAR, UNCERTAINTY, and DOUBT (FUD) to…

A simple overview on how hackers pushed backdoored updates to over a million ASUS devices running Windows.

A vulnerability was discovered and disclosed in late 2017 that affected the ConnectWise ManagedITSync integration, designed to sync data…