NEW

2024 True Cost of a Security Breach

Arrow pointing right
ExtraHop Logo
  • Productschevron right
  • Solutionschevron right
  • Why ExtraHopchevron right
  • Blogchevron right
  • Resourceschevron right

Arrow pointing leftBlog

ExtraHop

ExtraHop is on a mission to arm security teams to confront active threats and stop breaches. Our Reveal(x) 360 platform, powered by cloud-scale AI, covertly decrypts and analyzes all cloud and network traffic in real time to eliminate blind spots and detect threats that other tools miss. Sophisticated machine learning models are applied to petabytes of telemetry collected continuously, helping ExtraHop customers to identify suspicious behavior and secure over 15 million IT assets, 2 million POS systems, and 50 million patient records. ExtraHop is a market share leader in network detection and response with 30 recent industry awards including Forbes AI 50, Cybercrime Ransomware 25, and SC Media Security Innovator.

Learn more at our About Us page.

Posts by this author

How RevealX Evolves the SOAR SIEMbiosis

December 10, 2024

Learn about the ways RevealX enhances SOAR accuracy and relevance to evolve next-gen SIEM and inform better SOC decision making.

2025 Security Predictions: Top Ransomware Groups to Watch in a Post-LockBit Threat Landscape

December 2, 2024

ExtraHop spoke to three leading cyber intelligence experts to refine its forecast for RaaS royalty in 2025

IDC MarketScape Names ExtraHop® a Leader in Network Detection and Response

November 25, 2024

Learn why NDR is an essential security control and why IDC MarketScape named ExtraHop a Leader in the market.

The Role of State and Local Cybersecurity Professionals in Maintaining Election Integrity

November 4, 2024

Learn how state and local cybersecurity professionals disprove election interference and voter fraud claims to maintain election integrity.

The True Cost of a Security Breach in 2024: $677 Million

October 29, 2024

ExtraHop analysts combed through hundreds of pages of SEC filings, conducted stock research, and more to offer security and risk leaders an accurate, empirical picture of the end-to-end cost of a breach.

New File-Based Detection and Threat Hunting Capabilities in RevealX Set the Stage for Modern NDR

October 16, 2024

Learn how ExtraHop has made artifact analysis significantly more intuitive for SOC personnel with new file-based investigation and threat hunting capabilities.

5 Things CISOs Should Know about the Digital Operational Resilience Act (DORA) Regulation

October 29, 2024

Learn 5 quick facts about the Digital Operational Resilience Act (DORA) regulation and download the whitepaper to learn more.

New Study Assesses the Cyber Resilience of the Largest U.S. Enterprises

October 8, 2024

ExtraHop examines Kovrr’s latest research, Cyber Risk and Financial Resilience in the S&P 500.

Scattered Spider Escalates Attacks on Financial Services Cloud Environments

October 2, 2024

ExtraHop provides independent analysis of Eclectic IQ’s research on Scattered Spider’s malicious cloud-conscious activities as observed in recent attack campaigns targeting the financial services and insurance sectors.

ExtraHop Chief Product Officer on Next-Gen SIEM and Modern NDR

September 30, 2024

ExtraHop Chief Product Officer Kanaiya Vasani describes the role of network telemetry in the Next-Gen SIEM and what sets apart modern NDR from legacy solutions.

Turning a Moonshot into Reality

September 10, 2024

The RevealX integration with Netskope Cloud TAP is now available to all ExtraHop customers. Learn how the integration can help eliminate SSE blind spots.

2024 Presidential Election Security

August 28, 2024

Nation-state-backed threat actors are targeting election systems. Learn how to turn the network into a defensive advantage against these attacks.

An Inside Look at the Black Market for EDR Killers on the Dark Web

August 15, 2024

If you’re relying on EDR to protect your organization from ransomware and other threats, you might want to see how easy and inexpensive it is for threat actors to disable EDR.

New in RevealX 9.7: Network-Based File Analysis and Upgraded AI Search Capabilities

August 6, 2024

RevealX just got even better: network-based file analysis, enhanced AI search, and other new features make it easier to investigate and stop threats.

RevealX vs. BlackSuit Ransomware

August 1, 2024

Discover the TTPs associated with BlackSuit ransomware and learn how RevealX can help you detect it.

Widespread IT Outage Tests Organizations’ Resilience, Highlights Fragility of Digital Infrastructure

July 22, 2024

On Friday, July 19, a Falcon Sensor software update released by CrowdStrike caused widespread IT outages globally, testing organizational cyber-resilience and exposing the need for better disaster recovery planning

RevealX vs. Black Basta Ransomware

July 15, 2024

Discover the network-based techniques RevealX uses to detect Black Basta ransomware at multiple stages of the attack cycle.

Threat Briefing for OpenSSH “regreSSHion” Vulnerability

July 12, 2024

Use RevealX to detect attacks exploiting the OpenSSH “regreSSHion” Vulnerability

CDK Global Ransomware Attack Sends Shockwaves Through $1.2 Trillion Auto-Dealer Industry

July 10, 2024

The June 2024 cyberattack on CDK Global is another sobering reminder of the financial and legal risk associated with ransomware and of the supply chain risk stemming from “always-on” VPN tunnels.

Trends from RSA Conference 2024 Highlight the Promise and Peril of a Dynamic Industry

May 20, 2024

The speaking sessions from RSAC 2024 offered insight into the concerns, challenges, and opportunities for cybersecurity professionals.

ExtraHop Demonstrates AI/ML Prowess in Latest RevealX Updates

May 7, 2024

The latest RevealX release showcases powerful machine learning for smarter investigations, streamlined SOC operations, and more threats stopped.

Ransomware Is About to Get Worse. Much Worse.

April 23, 2024

If you think ransomware is bad now, cybersecurity experts warn it’s only going to get worse as 2024 wears on and the US general election approaches.

Phishing and Brand Impersonation Campaign Targeting ExtraHop

February 13, 2024

ExtraHop has taken a number of actions to protect customers, employees, and the public from phishing and brand impersonation leveraging the ExtraHop name.

New in Reveal(x): Built-in CrowdStrike Threat Intelligence, Falcon LogScale Record Storage, and More

January 25, 2024

The ExtraHop Reveal(x) platform adds major new features, including the CrowdStrike Falcon Threat Intelligence Premium and the Falcon LogScale recordstore.

Threat Briefing for Ivanti Connect Secure Critical Vulnerabilities

January 22, 2024

Use Reveal(x) to search for attacks exploiting Ivanti Connect Secure and Policy Secure critical vulnerabilities.

F5 BIG-IP Vulnerability: Using Decryption in Reveal(x) to Mitigate CVE-2023-46747

December 6, 2023

Learn how the Threat Briefing for F5 BIG-IP Authentication Bypass in Reveal(x) uses decryption to identify vulnerable appliances and instances of exploitation.

How RevealX Detects Attacks on Microsoft Environments, an Introduction

November 15, 2023

RevealX provides timely detections and unparalleled decryption capabilities for Microsoft environments.

C-suite is Investing in AI, But Concerned About Data Use, IDC Says

November 7, 2023

Generative AI is a top spending priority for the C-suite, even though executives worry that vendors will use their company data irresponsibly, IDC says

ExtraHop, CrowdStrike Deepen Partnership Through Addition of Threat Intelligence

September 18, 2023

ExtraHop customers will get CrowdStrike Falcon Threat Intelligence through Reveal(x) NDR; CrowdStrike will leverage Reveal(x) in services engagements

New Role-Based Modules for Reveal(x) Offer User Flexibility

July 18, 2023

New module-based packaging gives users more flexibility

Pair Network and Application Performance Monitoring for the Full Performance Picture

July 18, 2023

See how a network performance monitoring (NPM) tool can help you resolve performance problems faster when bad application code isn’t the cause.

Cloud Security Threats: CrowdStrike Highlights Cloud-Conscious Adversaries

June 15, 2023

The CrowdStrike 2023 Cloud Risk Report, which reports a 95% increase in cloud exploitation and a 288% increase in cloud-capable adversaries.

2023 Verizon DBIR: Phishing for Financial Gain

June 14, 2023

Get insights from the 2023 Verizon Data Breach Investigations Report (DBIR).

Reveal(x) Detects Data Leaks from Employee Use of ChatGPT

May 18, 2023

ExtraHop Reveal(x) lets organizations see in employees are sending intellectual property and other sensitive data to OpenAI ChatGPT.

Mandiant M-Trends 2023: Attackers Won’t Back Down

May 15, 2023

Get a quick rundown of the 2023 Mandiant M-Trends Special Report, which highlights top threats and vulnerabilities affecting global cybersecurity.

Impressions from RSA Conference 2023

June 6, 2023

Catch up on highlights from RSA Conference and trends ExtraHop observed from the expo floor.

Automated Retrospective Detection (ARD) Feature Overview

May 2, 2023

Automated Retrospective Detection from ExtraHop Reveal(x) 360 automatically searches past network data for newly discovered threats.

Reveal(x) and Palo Alto Networks Cortex XSOAR Integration

April 25, 2023

Learn how Reveal(x) and Palo Alto Networks Cortex XSOAR work together to create a context-rich Cortex incident, orchestrate response, and empower investigators in the War Room.

IDS, Palo Alto Networks Integration: What's New in Reveal(x) 9.2

April 25, 2023

ExtraHop Reveal(x) version 9.2 includes new IDS capabilities, Cortex XSOAR integration

Introducing ExtraHop IDS: Next-Gen Intrusion Detection

April 25, 2024

ExtraHop IDS integrates with the RevealX NDR platform to offer customers a simplified approach to intrusion detection that supports expanded CVE coverage.

Modern Threat Hunting with ExtraHop Reveal(x) (Video)

April 20, 2023

ExtraHop expert Josh Snow explains how to leverage Reveal(x) for threat hunting based on coverage, workflow, and retention.

Why It’s So Hard to Detect Advanced Persistent Threats

April 19, 2023

Organizations Using Signature-Based Security Tools Have Intelligence Gaps When New Exploits Appear

CrowdStrike Government Summit: Building Public Sector Cyber Resiliency

April 13, 2023

At the 2023 CrowdStrike Government Summit, ExtraHop executive tells agencies to understand their networks to build cyber resiliency.

What to Expect at RSA Conference 2023

April 11, 2023

Find out what to see and do at the 2023 RSA Conference in San Francisco.

VoIP Security: Attackers Can Easily Listen to VoIP Calls if Left Unprotected

April 6, 2023

Learn how easily attackers can monitor VoIP calls, exposing companies to data privacy risk, IP theft, social engineering schemes and more.

Anton Chuvakin, Tim Peacock and Rafal Los Talk Cloud Security

April 5, 2023

Rafal Los, head of services strategy at ExtraHop, recently joined Anton Chuvakin and Tim Peacock for a crossover episode of their two cloud security podcasts

Threat Alert: 3CXDesktopApp Supply Chain Attack

April 4, 2023

3CXDesktopApp supply chain attack hides malicious payload that can lead to major breaches.

Join ExtraHop at CrowdStrike’s First Government Summit

March 29, 2023

ExtraHop speaks about cybersecurity resilience at CrowdStrike’s first Government Summit

Customer Success: Stopping a Botnet Attack

March 23, 2023

A customer discovered their devices were part of a botnet attack. With ExtraHop NDR, they found the source and stopped the attack cold.

The Truth About Cyber Risk: CISOs Confront Ethical Dilemmas

March 22, 2023

CISOs face increasing pressure to downplay cyber risks and incidents; these ethical dilemmas can have disastrous personal and professional consequences.

New Trigona Ransomware Employs Unusual Techniques to Evade Detection

March 21, 2023

Discover the unusual defense evasion techniques Trigona ransomware employs to target the manufacturing, finance, and high tech industries.

CrowdStrike Threat Report Highlights Shift in Attacker TTPs

March 16, 2023

Findings from the CrowdStrike 2023 Threat Report underscore the need to combine EDR with NDR solutions to defend against changing attacker TTPs.

Customer Success: Defending the User Experience from Cyberthreats

March 14, 2023

Learn from ExtraHop customers using network visibility to secure and maintain an optimal digital experience for consumers.

How ExtraHop NDR Detects HardBit 2.0 Ransomware (Video)

March 9, 2023

Watch ExtraHop expert Josh Snow explain how Reveal(x) 360 can detect and prevent HardBit 2.0 ransomware before it causes damage.

These Women Are Making Huge Contributions to Cybersecurity

March 8, 2023

ExtraHop salutes several women who have made huge contributions to the cybersecurity field.

NDR for Cloud Workloads and Asset Discovery

March 7, 2023

Learn about the capabilities NDR solutions should have to help organizations securely migrate to the cloud and keep track of new assets and workloads.

Meet Wendy Hoey, 2023 CRN Channel Chief

March 3, 2023

Get to know CRN Channel Chief Wendy Hoey, ExtraHop Sr. Director of Global Distribution and Channel Programs, and learn about the Partner Program.

Forrester: Network Analysis and Visibility are Essential

March 1, 2023

See why Forrester Research says network analysis and visibility (NAV) solutions are essential to zero trust security.

Harnessing the Power of Network Data

February 28, 2023

Learn how NDR can help defend your organization by harnessing key network capabilities, including strategic decryption and investigative workflows.

A Multinational Retailer Combats Advanced Attacks with ExtraHop and CrowdStrike

February 24, 2023

Learn how a large multinational retail brand combines Crowdstrike EDR and ExtraHop NDR to defend their business from cyberattacks.

Threat Analysis Report: Detecting Cobalt Strike with ExtraHop Reveal(x)

February 14, 2023

Learn how to detect attacks leveraging Cobalt Strike in your environment, understand how these attacks unfold and ways to contain them.

Detecting Black Basta Ransomware with ExtraHop NDR (Video)

February 9, 2023

Watch ExtraHop expert Josh Snow explain how Reveal(x) 360 can detect and prevent Black Basta ransomware before it causes damage.

XDR Report: IT Decision Makers Struggle to Define Value

February 7, 2023

Learn how IT decision makers view extended detection and response (XDR) as a defense strategy, its benefits, and how best to implement XDR in your environment.

Make the Most of Your 2023 Budget with NDR

January 12, 2023

How NDR can help you optimize your security budget in 2023 by simplifying your security tech stack and mitigating workflows.

ExtraHop December TL;DR

December 22, 2022

For December's 2022 TL;DR, we're closing out the year with the new Gartner NDR Market Guide, an IDC report on XDR, and ExtraHop 2023 cybersecurity predictions.

The Latest 2022 Gartner® Report: 2022 Market Guide for Network Detection and Response

December 21, 2022

ExtraHop cybersecurity experts analyze the new 2022 Gartner NDR Market Guide, sharing insights into integration, automation, and how to evaluate NDR solutions.

Top Cybersecurity Trends for 2023: Strategies, Integrations, and Budgets

December 20, 2022

Find out what ExtraHop experts predict for cybersecurity in 2023, including integrated solutions, tighter budgets, and more prioritized planning in the C-suite.

Cybersecurity Predictions: Cloud Security Trends for 2023

December 13, 2022

ExtraHop experts discuss cloud security trends for 2023, sharing their cybersecurity predictions for cloud security threats, security strategy, and tools.

Honest Customer Reviews: Unlocking the Network Black Hole

December 12, 2022

Get one ExtraHop customer's unbiased assessment of ExtraHop Reveal(x) 360 user interface, deployment, and more.

Cybersecurity Predictions for 2023: The Threat Landscape

December 6, 2022

ExtraHop experts share their cybersecurity predictions for 2023. Learn what attack vectors to anticipate and how advanced threats are expected to evolve.

ExtraHop November TL;DR

November 22, 2022

For November's TL;DR, we're learning how to increase SOAR confidence with NDR and OpenSSL vulnerabilities while we prepare to attend and chat with you at AWS re:Invent 2022.

ExtraHop October TL;DR

October 28, 2022

For October 2022, we're talking about improving your SOAR, defining what XDR and CSPMs can do, and learning how Vice Society exploits the PrintNightmare vulnerability.

Cybersecurity Careers: Meet the Defense Against the "Dark Arts" Wizards

October 12, 2022

Learn what it's like to work in cybersecurity, from employees that started their careers at ExtraHop and continue to grow with the company

ExtraHop September TL;DR

September 29, 2022

For the September 2022 TL;DR, we're talking about how NDR and EDR stop breaches faster, a cyber risk and readiness report, reducing cloud security friction in the c-suite, and more.

Takeaways from the Gartner Hype Cycle for Security Operations, 2022

September 7, 2022

The experts at ExtraHop share their takeaways from the 2022 Gartner Hype Cycle for Security Operations Report. Read now and download the report.

ExtraHop August TL;DR

September 1, 2022

The August 2022 TL;DR, we're discussing integrated attack response with CrowdStrike and ExtraHop, scalable PCAP to modernize network visibility, defending against ransomware attacks, and more.

ExtraHop July TL;DR

July 29, 2022

For July 2022 TL;DR, learn how to empower XDR with CrowdStrike and ExtraHop, the top threats to cloud computing, eradicate active software supply chain attacks, and more.

Our New VP of Product & Technical Marketing Explains His Customer-First Approach

July 20, 2022

Meet Pete Lavache, VP of Product & Technical Marketing at ExtraHop, to learn his take on innovation, execution, and how today's companies should approach marketing.

ExtraHop June TL;DR

June 30, 2022

Learn how CrowdStrike and ExtraHop make XDR a reality, get RevealX 360 for AWS, understand CISA's guidance for Shields Up, DoS attacks, and more.

2022 Edison Awards Honors Advancements in Strategic Decryption

June 9, 2022

Discover why ExtraHop strategic decryption features were recognized for innovation by the 2022 Edison Awards.

Assessing Network Analysis and Visibility Solutions For Zero Trust

May 19, 2022

Network visibility is a necessity for zero-trust security, but there is more than one way to collect and analyze network data. An October 2021 Forrester report helps organizations assess the value of visibility solutions.

Our New VP of Product Hints at What's Next for NDR

April 28, 2022

Bryan Lares, VP of product shares his vision for user-centric workflows and expanded threat intelligence in NDR.

How one Retailer Prevented a Repeat Ransomware Attack

April 14, 2022

Most ransomware victims see repeat attacks. Learn how one security team used ExtraHop Reveal(x) to detect dormant ransomware before it could strike twice.

#BreakTheBias: International Women's Day 2022

March 8, 2022

ExtraHop is honoring International Women's Day by discussing unconscious bias and other hurdles to success.

Why Humility Is What's Needed for CISO Success

March 4, 2022

Learn what the 2022 Cyber Confidence Index tells us about CISO confidence and overconfidence in IT security readiness.

SANS Survey 2021: Your Security May Ride on SecOps Happiness

February 22, 2022

A SANS survey of modern SecOps can help CISOs understand what is adding stress for security teams, and what they can do about it.

What Happens if You Pay Ransomware?

February 16, 2023

What really happens when companies pay ransomware? Explore the costs and risks associated with giving in to cyber extortion.

ExtraHop December TL;DR

December 17, 2021

For the December 2022 TL;DR, we're talking about the Log4j exploit, SolarWinds SUNBURST attack one year later, cloud monitoring, decrypting traffic, and more.

The Past Year in Cybersecurity: 100 Facts, Stats, and Data Points that shaped 2021

December 13, 2021

ExtraHop covers a year of corporate cyber threats in this comprehensive look at the cybersecurity landscape of 2021.

Our IT OPS Director Gets Colorful in the Name of Tech Diversity

November 4, 2021

Learn why diversity matters to ExtraHop employees.

Things That Go Bump in the Network: Part III

October 28, 2021

October brings us Halloween and Cybersecurity Awareness Month. To honor both, we're sharing your stories of the real threats that go bump in the night.

What Are Supply Chain Attacks?

December 23, 2022

A quick-read executive summary on what supply chain attacks are and what you can do about them.

How ExtraHop Shut Down a C&C Beaconing Attack

August 25, 2021

Learn more about beaconing, how a C&C beaconing attack unfolds and how ExtraHop's Reveal(x) can quickly identify beaconing patterns.

The Elements of Cyberdefense

July 15, 2021

Security requires a multifaceted approach. Learn how one company uses our machine learning-based solution to solve multiple challenges, then view the Periodic Table of NDR Use Cases to learn how RevealX supports each element of cyberdefense.

Day Zero: Our Perspective on ExtraHop's Mission, Our Vision, and the Road Ahead

June 8, 2021

Today is Day Zero on the next phase of our journey at ExtraHop, and we're thrilled and excited for the future.

It's an Honor to Be Among the JMP Securities Elite 80

June 3, 2021

ExtraHop is honored to be named to JMP Securities 2021 Elite 80 for the fourth year in a row.

Video: How to Use NDR to Detect Malware Threats Like SUNBURST

December 21, 2020

Video from ExtraHop: What we have learned about how the attack works and how NDR is essential to detect threats such as the SUNBURST malware.

Video: SUNBURST Attack Series

December 21, 2020

SolarWinds Orion Sunburst attack video series by ExtraHop. Learn what steps ExtraHop recommends to ensure your network is not compromised.

How to Detect and Respond to the SUNBURST Attack

December 14, 2020

Sunburst attack 2020: Learn how to detect and respond to the Sunburst backdoor supply chain attack with ExtraHop's spectrum of detection approaches.

Advanced Persistent Threats Can Affect Even the Best of Us

December 10, 2020

A note from ExtraHop on the recent FireEye breach.

ExtraHop Reveal(x) + Microsoft Azure Sentinel

September 30, 2021

In just 3 minutes, see how this integration of real-time threat detection from Reveal(x) helps you protect your Azure workloads.

Experience RevealX NDR for Yourself

Schedule a demo