Make Your Microsoft Security Tools Come to Life With Huntress
Microsoft has come a LONG way with respect to security in the last decade. I really mean a LONG way. When I was at other…
Category: ThreatIntelligence-IncidentResponse
You Can Run, but You Can’t Hide: Defender Exclusions
The endpoint team at Huntress is focused on providing telemetry and protections around real adversary threats. One thing we’ve noticed that’s often overlooked is adversaries…
Know Thy Enemy: A Novel November Case
Threat actors are, frankly, rarely original. They share the same playbooks, tactics, and often don’t even bother to rename offensive security tool names. In early…
Huntress Managed Security Awareness Training: Relevance
Welcome to “Truman’s Take,” where Product Marketing Manager James O’Leary sits down with Senior Product Researcher Truman Kain. As one of the leading minds behind…
Optimizing Risk Discovery and Remediation with Qualys Gateway Service (QGS)
Unpatched vulnerabilities remain one of the largest drivers of cyber risk, accounting for nearly 60% of cyber compromises. Modern security programs are therefore measured not only by…
Managed SIEM and the Art of Perfecting Cyber Defense
Mastering the Art of Threat Hunting To master an art form, your tools are just as important as your skills. But it’s not just about…
2024 Wrapped: Huntress Managed SAT Edition
What a year 2024 has been! It saw the Paris Olympics, the Celtics winning banner #18 (this was big for me), a new Elden Ring,…
Does Santa Like NordVPN? | Huntress
Well, kids, let’s just say Santa’s workshop has a strict policy against being on the Naughty List. In the world of cybersecurity, that list includes…
10 Endpoint Security Trends and Tips for 2026
In 2026, the endpoint security issues facing businesses look way different from malware campaigns of a decade ago. Endpoints, identities, and cloud workloads now overlap,…
The Identity Breach You Didn’t Know You Had: Google Workspace
Why attackers now treat your inbox like an identity control plane For years, security teams treated Google Workspace like a productivity layer – email, documents,…
Hiding in Plain Sight with App Domain Manager Injection
A little-known feature of the .NET framework allows attackers to execute malicious code inside trusted, Microsoft-signed applications without exploiting a software flaw or dropping a…
The Growing Reality of AI-Enhanced Candidate Fraud
Within the world of recruiting, more specifically the tech and remote-work world, the conversation about AI in hiring has moved past “if” to “how often.”…