It Costs How Much? | Huntress
Cybercriminals are vipers. They’re like snakes in the grass, hiding behind their keyboards, waiting to strike. And if you’re a small- and medium-sized business (SMB),…
Category: ThreatIntelligence-IncidentResponse
Microsoft’s April 2026 Patch Tuesday Addresses 163 CVEs (CVE-2026-32201) – Blog
8Critical 154Important 1Moderate 0Low Microsoft addresses 163 CVEs in the April 2026 Patch Tuesday release, including two zero-day vulnerabilities, one of which was exploited in…
LightSpy Malware Variant Targeting macOS
On April 11, 2024, BlackBerry released a new blog detailing a new VirusTotal upload of the LightSpy mobile spyware framework. BlackBerry stated that this malware…
The Undeniable Benefits of Healthcare Security Awareness
Healthcare organizations now operate in a treacherous digital environment characterized by persistent, sophisticated cyberattacks and evolving tradecraft. As IT operations become increasingly decentralized to accommodate…
New: Use response actions to update Zscaler policies and block threats
The intel teams here at Red Canary and Zscaler have seen some notable social engineering attacks recently. Bad actors get an employee email address and…
LOLBin to INC Ransomware | Huntress
This blog post was originally published on May 1, 2024. Background Huntress analysts have previously observed INC ransomware being deployed, and recently observed this specific…
Healthcare Held Hostage: Fighting the Plague of Ransomware
By now, we all have pandemic fatigue. But before we put our guards down, there’s another contagion spreading: ransomware. It moves with ferocity, especially across…
Deep Scan: Expanding Vulnerability Detection Beyond Traditional Boundaries
Security teams estimate that a significant percentage of enterprise software is installed outside standard system directories or package-managed locations, creating persistent visibility gaps for traditional…
Anatomy of an Autonomous AI Agent Risk: Qualys ETM on OpenClaw
Executive Summary An unauthorized OpenClaw AI agent was detected disguised as a routine package on a Windows Server host. The situation escalated into a priority…
Instant Clarity for SOC Teams
Security teams are flooded with logs, yet every alert demands fast, accurate context. In Verizon’s 2025 Data Breach Investigations Report [1], they analyzed 22,052 security…
From South Park to Curriculaville
Give it up for Jeff Gill, our very own Senior 2D Animator. Like everyone here at Huntress, Jeff is highly passionate and exceptionally talented. But…
Active Remediation: Proactive Response with Huntress Managed EDR
When it comes to responding to incidents, time is of the essence, both in terms of the attacker’s presence in your environment and the time…