Join Huntress’ John Hammond & Dave Kleinatland on a Journey of the Dark Web
Welcome to the dark web. Maybe you’re a threat actor looking to cash in on the latest data swiped in a breach. Maybe you’re a…
Category: ThreatIntelligence-IncidentResponse
From a Fake AnyDesk Installer to MetaStealer
ClickFix attacks have been ticking up for over a year now, as attackers find success in tricking users into executing malicious code on their computers…
Debunking Microsoft 365 & Identity Myths
When it comes to identity security in Microsoft 365, the forecast is often cloudy, especially when some vendors lean into half-truths or conveniently cropped facts…
Obscura, an Obscure New Ransomware Variant
On 29 August 2025, Huntress analysts encountered a previously unseen ransomware variant called “Obscura.” This name was taken from the ransom note (README_Obscura.txt), which also…
What Is Multi-Factor Authentication (MFA)?
Many common passwords can take a threat actor only minutes or even seconds to hack. That’s why having multiple layers of protection, including a strong…
What Is Multi-Factor Authentication (MFA)?
Many common passwords can take a threat actor only minutes or even seconds to hack. That’s why having multiple layers of protection, including a strong…
What Is Single Sign-On? The Practical Guide
Quick answer: Single sign-on, or SSO, is a user authentication method that lets an individual sign in to a single account and get access across…
An Attacker’s Blunder Gave Us a Look Into Their Operations
Figure 8: Threat actor starts to rely on automated workflows The threat actor also appeared to be interested in other AI tools to help with…
The Dangers of Storing Unencrypted Passwords
This is an offshoot of our other blog, “Huntress Threat Advisory: Active Exploitation of SonicWall VPNs,” which allowed initial access and was followed by the…
How Malicious Hackers Try to Infiltrate Your IT Team
In the ever-evolving landscape of cyber threats, a new and insidious danger is emerging, shifting focus from external attacks to internal infiltration. While our last…
What Is Managed EDR? | Huntress
A recent blog post that we wrote sparked some conversation in the infosec community about how endpoint detection and response (EDR) products work, how investigations…
What’s the Average Cost of a Data Breach in 2025?
(Doctor Evil voice:) One million dollars. It’s actually multiple millions when it comes to the average cost of a data breach, including both direct and…