Tenable’s key takeaways from the Verizon DBIR (2026)
The 2026 Verizon Data Breach Investigations Report (DBIR) reveals a troubling trend: vulnerability exploitation has surged to become the number one initial access vector while…
Category: ThreatIntelligence-IncidentResponse
Practical Tips for Conducting Digital Forensics Investigations
Imagine this: A hacker has compromised and infiltrated your company’s environment, and you’re the defender on shift. You want to find the evidence of their…
Threat Advisory: Hackers Are Selling Access to MSPs
Our CEO, Kyle, recently received the ad below, found on an online forum frequented by cybercriminals. The body of the ad, translated into English, reads:…
Inside the 2026 Verizon DBIR: What One Billion Records Revealed About Vulnerability Remediation
The Verizon 2026 Data Breach Investigations Report has been published. Qualys is proud to have served as a research partner and contributor, contributing analysis of…
Huntress’ Commitment to the Cybersecurity Community
The broader cybersecurity community is a pretty incredible group. Look no further than major incidents and breaches to see examples of the community coming together…
Don’t Get Schooled: How to Catch a Phish
Threat actors love a good phish. In this year’s Data Breach Investigations Report released by Verizon, phishing is named as one of the top four…
Gifting User Passwords to Adversaries With NPPSPY
While investigating an intrusion, Huntress stumbled on something rather fascinating to do with adversarial credential gathering. Threat actors are often retrospectively gathering credentials by dumping…
How Progressive Computing Combated a Large-Scale Cyberattack
Let’s set a scene that’s all too familiar to those of us who work in cybersecurity. It’s the Friday afternoon before the Fourth of July…
Threat Actor Defense Evasion: How Attackers Disable AV & EDR
Threat actors know that most organizations are going to have some type of endpoint defenses, whether it’s next-generation antivirus (NGAV), endpoint detection and response (EDR),…
Evolving Endpoint Protection and the Next Iteration of Huntress
We are excited to introduce the next iteration of The Huntress Managed Security Platform with the addition of Huntress Managed Endpoint Detection and Response (EDR). …
Unraveling a Reverse Shell with Managed EDR
We could take a note or two on what agility means from our adversaries, aka threat actors. Something doesn’t work? Plan B is ready. Password…
Bug Bounties for the 99%
Intro by Andrew Morgan, Founder of Right of Boom Cyber Summit. March 26, 2020, and July 2, 2021, are two dates that will be seen…