82 relevant articles · classified by Haiku 4.5 · ingested daily
Huntress partners United Systems and F1 Solutions share migration stories to Huntress Managed Microsoft Defender.
77 more articles, classified against the roster and tagged for source / sentiment / catalyst type.
Already subscribed? Sign in →
Huntress reports unauthorized access to its QA and product testing environment and discloses investigation findings.
Huntress (official) ↗
Wiz Research Team discloses ChaosDB, a vulnerability in Azure Cosmos DB that allowed unrestricted access to databases of thousands of Microsoft customers.
Wiz (official) ↗
Wiz discloses ChaosDB, a cloud database vulnerability affecting multiple managed services, and presents findings at BlackHat Europe 2021.
Wiz (official) ↗
Cato Networks publishes a guide to detecting DNS tunneling techniques used by malware and APT groups.
Cato Networks (official) ↗Huntress identified and responsibly disclosed an information disclosure vulnerability in MSP survey software, working with Crewhu on remediation.
Huntress (official) ↗Huntress launches Host Isolation, a new feature for rapid threat containment on its security platform.
Huntress (official) ↗Huntress publishes threat analysis of blind SQL injection vulnerability in BillQuick Web Suite being exploited for ransomware deployment.
Huntress (official) ↗Huntress launches Managed Antivirus, Host Isolation, and 24/7 ThreatOps coverage to expand its threat-detection platform.
Huntress (official) ↗Huntress launches Managed Antivirus as a new service on its security platform.
Huntress (official) ↗Huntress identifies the top four CVEs exploited by attackers and outlines defensive strategies.
Huntress (official) ↗
Wiz researchers disclose 4 critical vulnerabilities in Azure's OMI agent affecting numerous Linux VMs.
Wiz (official) ↗
Wiz Research discloses supply-chain vulnerabilities in open-source code affecting Azure customers, exposing unauthorized code execution risk.
Wiz (official) ↗Huntress publishes an advisory on CVE-2021-40444, a critical arbitrary code execution vulnerability in Microsoft MSHTML.
Huntress (official) ↗
Wiz Research discloses ChaosDB, a critical vulnerability in Azure Cosmos DB allowing unauthorized cross-customer admin access.
Wiz (official) ↗
Wiz Research discovers ChaosDB, a critical vulnerability affecting thousands of Azure Cosmos DB customers, demonstrating CNAPP threat discovery capabilities.
Wiz (official) ↗Huntress documents ongoing ProxyShell attacks against unpatched Microsoft Exchange servers months after patches were released.
Huntress (official) ↗Huntress publishes technical analysis of a Python-based malware loader and RAT discovered in the wild.
Huntress (official) ↗
Wiz Research disclosed 3 critical vulnerabilities in AWS services that allowed unauthorized cross-account access to customer data.
Wiz (official) ↗
Wiz Research discovers DNS loophole exposing dynamic DNS data from millions of endpoints globally, presented at Black Hat 2021.
Wiz (official) ↗Huntress publishes a post-incident analysis of the Kaseya VSA supply chain attack and defenses.
Huntress (official) ↗Huntress security researchers analyze the Kaseya VSA supply-chain ransomware attack and explain how its impact was contained.
Huntress (official) ↗Huntress publishes expert analysis on current email-based threats including phishing and ransomware campaigns.
Huntress (official) ↗Huntress deployed a vaccine to protect managed service provider customers from exploitation via the Kaseya VSA ransomware vulnerability.
Huntress (official) ↗Huntress tracks a critical ransomware incident affecting MSPs via a Kaseya VSA supply chain attack.
Huntress (official) ↗Huntress reports on PrintNightmare, a critical Windows remote code execution vulnerability affecting multiple server environments.
Huntress (official) ↗
Cato Networks releases an updated MDR service that reduces baseline time to 90 days and automates 70 security checks using cross-organizational baselines.
Cato Networks (official) ↗Huntress publishes a technical threat analysis of environmentally keyed malware using PowerShell.
Huntress (official) ↗Huntress ThreatOps documents discovery of Raccine, a ransomware mitigation tool using IFEO debugger hooking.
Huntress (official) ↗Huntress documents a fake IRS phishing scam that defrauded a college student of $10,000.
Huntress (official) ↗Huntress details analysis of obfuscated Cobalt Strike malware discovered across 700 registry values.
Huntress (official) ↗Huntress breaks down the Executive Order on improving the nation's cybersecurity standards.
Huntress (official) ↗
Cato Networks analyzes the Colonial Pipeline ransomware attack and DarkSide's claim to be an apolitical criminal group seeking profit, not geopolitical disruption.
Cato Networks (official) ↗Huntress analyzes a weaponized PowerShell malware attack chain and persistence mechanisms.
Huntress (official) ↗
Cato Networks identifies 24 malicious Chrome extensions undetected by endpoint protection systems and threat intelligence feeds.
Cato Networks (official) ↗Huntress explains how attackers abuse Windows administrative shares to propagate laterally across networks.
Huntress (official) ↗Huntress documents how hackers abuse ngrok tunnels to establish remote access to victim networks.
Huntress (official) ↗
Cato Networks discloses detection of Microsoft Exchange 0-day CVEs (CVE-2021-26855, CVE-2021-26858, CVE-2021-26857, CVE-2021-27065) and deployed defenses.
Cato Networks (official) ↗
Cato Networks MDR team finds 38% of Firefox and 20% of Chrome users unpatched against recent zero-days despite available fixes.
Cato Networks (official) ↗Huntress publishes research on active mass exploitation of on-premises Microsoft Exchange Server vulnerabilities with indicators of compromise.
Huntress (official) ↗Huntress discloses zero-day vulnerabilities in event-management platforms targeting MSP supply chains.
Huntress (official) ↗
Cato Networks Research Labs describes a method for correlating threat intelligence feeds to prioritize high-confidence malware detections and reduce false positives in SOC operations.
Cato Networks (official) ↗
Cato Networks analyzes ICS vulnerabilities following Oldsmar water system breach attempt, citing years of unaddressed critical infrastructure risks.
Cato Networks (official) ↗
Wiz reports a critical Linux sudo vulnerability affecting an estimated 90% of cloud workloads, with affected versions dating back to 2011.
Wiz (official) ↗Huntress launches Managed Antivirus service for MSPs and IT admins to strengthen endpoint protection.
Huntress (official) ↗Huntress reports on SolarWinds Orion exploitation used to distribute malware in a coordinated supply-chain attack.
Huntress (official) ↗Huntress documents TrickBoot, a new TrickBot malware module targeting firmware vulnerabilities.
Huntress (official) ↗Huntress analyzes a TrickBot malware launcher using batch script obfuscation techniques.
Huntress (official) ↗Huntress launches External Recon service to identify exposed ports and internet-facing services.
Huntress (official) ↗Huntress launches Ransomware Canaries, a detection service designed to accelerate ransomware incident identification.
Huntress (official) ↗
Cato Networks updates its IPS to block CVE-2020-0796, a critical Windows SMBv3 RCE vulnerability, and urges patching across affected systems.
Cato Networks (official) ↗Huntress validates a critical vulnerability in SolarWinds N-Central, detailing exploitation mechanics and impact assessment.
Huntress (official) ↗Huntress validates eight vulnerabilities in ConnectWise Control ranging from low to high severity.
Huntress (official) ↗Huntress demonstrates Assisted Remediation containing and remediating Emotet/TrickBot malware for an MSP partner.
Huntress (official) ↗Huntress publishes technical research on LNK-based attack chain discovery.
Huntress (official) ↗
Standard Insurance wins an ICMG Architecture Excellence Award for its WAN transformation using Cato Cloud.
Cato Networks (official) ↗Huntress publishes guidance on the ASUS Live Update supply chain attack (Operation ShadowHammer) affecting IT departments globally.
Huntress (official) ↗
Cato Networks launches Cato MDR and partners with SentinelOne for zero-day threat prevention, adding managed threat detection to its cloud security platform.
Cato Networks (official) ↗Huntress publishes technical analysis of CVE-2017-18362, an SQL injection vulnerability in ManagedITSync affecting ConnectWise and Kaseya integrations.
Huntress (official) ↗Huntress documents AUTOEXEC.BAT behavior on Windows 7 and 10, testing legacy persistence mechanisms and attacker techniques.
Huntress (official) ↗
Cato Networks launches Intelligent Last-Mile Management, automating monitoring and management of SD-WAN connections to its global PoP network.
Cato Networks (official) ↗
Cato Networks demonstrates optimized routing reduces latency by replacing Internet core with managed backbone network.
Cato Networks (official) ↗
Cato Networks launches identity-aware routing for SD-WAN, enabling business-context policies based on user identity and group affiliation.
Cato Networks (official) ↗Huntress details a phishing campaign using fake invoice attachments to redirect victims to credential-theft pages.
Huntress (official) ↗
Paysafe consolidates MPLS and VPN infrastructure onto Cato Cloud, resolving Active Directory sync issues and reducing WAN complexity.
Cato Networks (official) ↗
Cato Networks argues that a critical Cisco ASA vulnerability demonstrates the obsolescence of appliance-centric network security.
Cato Networks (official) ↗Huntress ThreatOps publishes technical analysis of a Kaseya VSA vulnerability and associated mining payload.
Huntress (official) ↗
Cato Networks publishes guidance on network scanning threats and mitigation approaches for Microsoft RDP and related attack vectors.
Cato Networks (official) ↗Huntress researchers document attack techniques using trusted applications for persistence evasion.
Huntress (official) ↗Huntress analyzes the re-emergence of Emotet malware and its new worm-like self-propagation techniques.
Huntress (official) ↗
Cato Networks launches a managed, cloud-based IPS service integrated with its SD-WAN platform, featuring context-aware threat detection.
Cato Networks (official) ↗Huntress publishes a technical analysis of how its detection platform identified and investigated an MSSQL-based breach at partner NTConnections.
Huntress (official) ↗Huntress publishes malware analysis on Redosdru, detailing encrypted DLL payload techniques and detection methods.
Huntress (official) ↗
Cato Networks publishes guidance on defending against WannaCrypt ransomware exploiting the Windows SMBv1 protocol vulnerability.
Cato Networks (official) ↗Huntress details how its platform helped an MSP detect and respond to an MSSQL database attack.
Huntress (official) ↗
Cato Networks details a WebEx Chrome extension RCE vulnerability affecting 20M users and demonstrates virtual patching as a mitigation approach.
Cato Networks (official) ↗Huntress wins ConnectWise IT Nation's Partners' Choice Award for its Managed Detection & Response service.
Huntress (official) ↗
Cato Networks' security research lab documents a blackhat SEO spam campaign leveraging compromised websites and Pastebin for clickjacking.
Cato Networks (official) ↗

