When Trust Becomes a Trap: Foiling a Medical Software Hack
Imagine you’re trying to install a trusted program, like a medical image viewer, and everything seems fine. But there’s a twist: hackers have tricked you…
Category: ThreatIntelligence-IncidentResponse
Huntress Recognized with 44 New G2 Leader Badges for Summer 2024
We’re only midway through the year, and the Huntress trophy case is filling up quickly. For Summer 2024, Huntress Managed EDR was featured in 50…
Huntress Is Now a CVE Numbering Authority. But What Does
Huntress has been authorized by the Common Vulnerabilities and Exposures (CVE) Program as a CVE Numbering Authority (CNA). This sounds fancy (and it is), but…
SlashAndGrab ConnectWise ScreenConnect Vulnerability | Huntress
The “exploit” is trivial and embarrassingly easy. These are words you never want to hear when talking about vulnerabilities in a widely used product, but…
Don’t Get Security from Your RMM Provider: Know the Risks
Imagine you’re playing in the big game. With only a minute left in the fourth quarter your team is one yard away from sealing the…
That “Friendly” Prompt is ClickFix
Cybercrime isn’t the chaotic mess of random attacks people still imagine. It’s a booming global economy, projected to cost the world $12.2 trillion annually by…
The Three-Finger Test | Huntress
Three fingers. That’s not just a perfect volume for a glass of scotch, it’s also all it took to expose a deepfake. Jim Browning is…
OpenClaw, Rogue Agents, and Application Hygiene
Acknowledgements: Special thanks to the Huntress Adversary Tactics and Product teams for their work building out identity telemetry, Rogue Applications, and SIEM detections that made…
Decoding NightSpire: Ransomware IOCs Aren’t Set in Stone
Our industry has a ransomware actor categorization problem. News articles will frequently feature splashy headlines like “Akira ransomware group targets critical infrastructure.” However, the reality…
Signals from the Cloud Security Forecast 2026: Cloud Risk Is Scaling through Design, Not Disruption
Key Takeaways Identity and permissions now determine what is reachable, making them the primary drivers of cloud risk. Runtime exposure, not individual findings, determines how…
Protecting Against Session Hijacking & Credential Theft
Cybercriminals are constantly refining their tactics and attack methodologies. With growing threats like session hijacking and credential theft, these aren’t just buzzwords—they’re real threats that…
Phishing in the Fast Lane
Phishing continues to be a hot-button issue and a prevalent worry for many, so let’s keep this conversation alive. In a recent installment of Tradecraft…