2.19.21
Where Does NDR Stand in the 2020 Gartner Hype Cycle for Security Operations?
The 2020 Gartner Hype Cycle for Security Operations shows NDR well past the Peak of Inflated Expectations, and drawing near to the Slope of Enlightenment. Read the blog to learn more.
Chase Snyder
2.9.21
What the Stock Market Looks Like on the Network
The last week of January 2021 was an eventful week for the stock market, to say the least. In the midst of the mayhem, one of our expert trainers did a virtual training with the retail arm of a large bank, where they saw some unusual network activity.
Katie Lockett
2.4.21
Act Two: The Vendor Responds
The second installment of our story about investigating some very strange behavior happening on the network.
Cal Jewell
2.4.21
When You Detect Network Enumeration: A Real-World Example in Two Acts
A network enumeration detection sends a group of security professionals down a rabbithole. Read the blog to follow along as they investigate some very strange behavior happening on the network.
Cal Jewell
1.29.21
SANS 2020 Cloud Security Report
Gain valuable insight into the tooling and migration trends to watch today and in the future with the newest report from the SANS Institute.
Dale Norris
1.26.21
SANS Review: Taking on Modern Threats
In this SANS review of ExtraHop Reveal(x) network detection and response, Dave Shackleford discusses why network truth combined with sophisticated machine learning count for a lot in security. Intuitive design and usability take a solution to the next level.
Carol Caley
1.7.21
Free Learning Path: The Keys to Cryptography
We've unlocked our cryptography learning path, making it free and available to everyone. Learn the basics of encryption, decryption, secure connections, and how to interpret key security data.
Kurt Shubert
12.18.20
Analyzing the SUNBURST SolarWinds Attack Campaign For Threat Intelligence
SolarWinds attack: ExtraHop is sharing 1700+ suspicious IP addresses (for threat hunters and data scientists) that were associated with the Sunburst backdoor attack.
Todd Kemmerling
12.14.20
How to Detect and Respond to the SUNBURST Attack
Sunburst attack 2020: Learn how to detect and respond to the Sunburst backdoor supply chain attack with ExtraHop's spectrum of detection approaches.
ExtraHop
10.14.20
Security Alert: 'Bad Neighbor' Vulnerability Affects Windows 10 Systems
The Windows 10 vulnerabilities unveiled by Microsoft on October 13 include a remote DoS (CVE-2020-16899) and a remote code execution flaw (CVE-2020-16898) dubbed 'Bad Neighbor'. Get the rundown on potential exploits and what you should do.
Jeff Costlow
9.17.20
Professional Services Customer Success Stories: Scaling Digital Experiences During COVID-19
Learn how ExtraHop Professional Services helped one company secure a massive increase in personal teller machine use in lieu of in-person interactions.
Michael McPherson
9.16.20
Security Alert: Detecting CVE-2020-1472 Zerologon Exploitation with NDR
The recent Zerologon vulnerability (CVE-2020-1472) could allow attackers to get control of a Windows domain without any user credentials. Learn how it works and how to protect against exploits.
Jeff Costlow
9.11.20
Alerts That Matter: Knowing When (and How) to Take Decisive Action
Sophisticated cyberattacks go undetected for weeks or months, and when discovered, security analysts struggle to contain the compromise and assess its scope. Most detection tools are able to create incident tickets, but noisy detections quickly become "ticket spam" and contribute to the security analyst's challenge of rising above the noise.
Jesse Munos
9.1.20
Strange Behavior: The Case for Machine Learning in Cybersecurity
Many people are justifiably skeptical of machine learning's value. The strongest case for ML in cybersecurity lies in detecting unusual behavior that other approaches miss.
Chase Snyder
8.27.20
Uncovering the Unknown: Proactive, Covert Identification of Evasive Threats
Attackers are constantly evolving their tactics and techniques to avoid detection. But attackers can't eliminate all traces of their activities. Here is how ExtraHop Reveal(x) streamlines the threat hunting process.
Jesse Munos
8.26.20
SANS on Building Effective SOC Teams Despite the Skills Gap
A recent SANS survey found that, because of budget limitations, more companies are reconsidering their security staff hiring. Given that necessary skills are still in demand, Security Operations Managers will need to take a different approach to bridge the gap.
Carol Caley
7.28.20
Remote Work Isn't Going Away. Here's How to Secure WFH For The Long Haul
After the rapid shift to remote work, it's time to look toward maintaining the security of work-from-home infrastructures for the long haul. A recent SANS study and accompanying webinar discuss how.
Chase Snyder
7.24.20
Ripple20: Finding Vulnerable Devices and Detecting Attacks
The Ripple20 group of vulnerabilities affects hundreds of millions of devices across many industries. Learn how to identify devices using the vulnerable Treck software and detect Ripple20 exploits.
Jeff Costlow
7.23.20
Why, Thank You
See ExtraHop recognized in the Forbes AI 50, The Ransomware 25 from Cybercrime Magazine, and the Forbes 20 Best Cybersecurity Startups To Watch!
Celine Rosak
7.22.20
Introducing New Reveal(x) 360 Innovations
New Reveal(x) 360 features make it faster and easier to get the network detection and response you need for as long as you need it. Try Reveal(x) 360 for free!
Ryan Davis
