A Day in the Life of a Threat Analyst
As a UK member of the Threat Operations team, I have the immense pleasure of working with colleagues in the USA and Australia. When we…
Category: ThreatIntelligence-IncidentResponse
How Huntress Can Complement—Not Complicate—Your Security Stack
There’s a common misconception in cybersecurity that more = better. Many businesses often flock to buy additional tools or add on more layers in hopes…
One Year Later | Huntress
It’s hard to believe, but it’s been a year since the Colonial Pipeline ransomware attack. In case your memory’s fuzzy, this was the incident that…
Evicting the Adversary | Huntress
There are plenty of articles and cheat sheets advising defenders how to monitor, hunt and detect the adversary in their environment. But sometimes, it feels…
Huntress API Is Now in Public Beta!
In June 2021, Huntress unveiled the new Huntress Managed Security Platform, which focused on enabling continuous updates and adaptation with reduced management and procurement overhead.…
How Huntress Protects SMBs | Huntress
There’s an interesting dynamic in the cybersecurity world: the more critical it’s become over time, the harder it’s gotten to manage. Gone are the days…
The Mechanics of Defense Evasion
Dig, if you will, the picture of you and I engaged in a stress. Being on the receiving end of defense evasion is stressful. I…
Rapid Response: Microsoft Office RCE – “Follina” MSDT Attack
This post, as is the norm for emerging threats, is a developing article and may be subject to change as the Huntress team learns more…
Out of Sight, Top of Mind
Cybersecurity is a lot like insurance: it’s difficult to calculate ROI unless something bad happens. The first auto insurance policy was sold in the US…
Recap: Navigating the NIST Cybersecurity Framework
As the security landscape evolves, matures and becomes more complex, organizations need a trusted framework they can easily adopt and integrate into their existing security…
Triangulation | Huntress
Once upon a time, I had my butt handed to me in a post-incident response debrief. I thought it was a good report. It was…
Metasploit Wrap Up 05/22/2026
Another week, another authentication bypass Our humble Metasploit weekly(ish) blog has been blessed with a new network component vulnerability. The dynamic duo of @sfewer-r7 and…