2.14.19
ExtraHop on The CyberWire
Listen to ExtraHop VP of Security Matt Cauthorn chat with CyberWire's Dave Bittner about Chrome Extension malware, our investigation into the fake Postman extension, and why attacks like these are scary despite being relatively unsophisticated.
Jaq Evans
2.12.19
Show and Tell: What a Live Attack Simulation Looks Like in Reveal(x)
Our online demo now features a live attack simulation where you can observe a hacker doing her job: exploiting a Drupal vulnerability, installing custom executables through PsExec, and more.
Tyson Supasatit
2.5.19
EMA Names Reveal(x) a Top 3 Winner
Why does Reveal(x) lead the pack on critical security use cases including asset classification and inventory, early breach detection, encrypted traffic analysis, and more? Learn why Enterprise Management Associates named Reveal(x) a Top 3 Winner in their new report, Security Analytics for Threat Detection and Breach Resolution in 2019.
Barbara Kay
1.31.19
Espionage Through Chrome Extensions
After detecting and investigating a fake Postman Chrome Extension using Reveal(x) network traffic analysis, one question remained: how much damage could a more sophisticated attacker do? I made my own Chrome malware to find out. Here's what I learned.
Matt Schurr
1.31.19
Hacker, Interrupted
What happens when you find a data leak in your own environment using your own network traffic analysis product? You investigate, of course, and record the whole process. Read on to learn how I used Reveal(x) to catch the fake Postman Chrome extension red-handed, complete with screenshots of the hunt.
Matt Schurr
1.24.19
Reveal(x) Feature Short: Encryption Audit
Watch this 3-minute video to learn how ExtraHop Reveal(x) uses network traffic analysis to help you quickly and easily audit your network for expired certifications, weak ciphers, and more.
Chase Snyder
12.11.18
Clarity in the Fog of War: The Value of Red-Blue Exercises
It's hard to win a fight if you've never thrown a punch. For cyber security, practice comes in the form of Red-Blue exercises like the one ExtraHop just hosted in our Seattle headquarters. Watch this 2-minute video to see the Blue team take on faux-attackers with Reveal(x)!
Tyson Supasatit
12.7.18
ZDNet: Industrial espionage fears arise over Chrome extension caught stealing browsing history
Company test runs own traffic analysis service and finds malicious Chrome extension in its own backyard.
Mentha Benek
12.6.18
We Busted A Fake Chrome Extension That Was Trying to Steal Data
A mysterious (and fake) Chrome extension. A clever data exfiltration scheme. They would have gotten away with it, too, if it weren't for those meddling security analysts using ExtraHop Reveal(x)! Follow along as we go from threat detection to response in this real-life threat hunt with network traffic analysis.
Jeff Costlow
11.28.18
A Case Study for Modern Threat Hunting
Cyber security experts are in high demand but many so-called threat hunters begin as network engineers, admins, or analysts. Read this step-by-step case study to learn the basics of confirming and investigating a breach using ExtraHop Reveal(x), network traffic analysis for the enterprise.
Adam Hebert
11.15.18
Decrypt Perfect Forward Secrecy with F5 BIG-IP and ExtraHop
Learn how to use F5 BIG-IP to capture perfect forward secrecy session keys and forward them to ExtraHop in order to passively analyze PFS-encrypted network traffic.
Tyson Supasatit
11.7.18
Reveal(x) Feature Short: Signal Metrics
Watch this 3-minute video to see how the unique Signal Metrics feature in Reveal(x) highlights behaviors that could be impacting your security posture and reducing your hygiene and compliance so you can quickly act on these potential vulnerabilities.
Chase Snyder
11.5.18
How To Detect That Hadoop/YARN DemonBot Exploit That's Going Around
A new 'DemonBot' is exploiting remote code execution in Hadoop YARN to build a huge botnet, but the possibility of data theft via this exploit also looms large. Here's how to detect it quickly.
Matt Cauthorn
10.31.18
Reveal(x) Feature Short: Threat Intelligence
Watch this 3-minute video to see how you can use ExtraHop Reveal(x), network traffic analysis for the enterprise, to quickly investigate suspicious communications identified by third party threat intelligence feeds using STIX files.
Chase Snyder
10.17.18
Customer Spotlight: Value Beyond Detections
Learn how one Reveal(x) customer uses network traffic analysis (NTA) to focus on good security hygiene and reduce their attack surface in order to proactively minimize risk.
Malcolm Fitzgerald
10.15.18
Reveal(x) Feature Short: Investigation
Watch this 3-minute video to see the full Reveal(x) investigation workflow and learn how SecOps can use network traffic analysis to go from high level threat intelligence to the actual contents of suspicious packets in a matter of minutes.
Chase Snyder
10.3.18
What Is Perfect Forward Secrecy?
Learn why Perfect Forward Secrecy is more important than ever, and how IT Ops and SecOps must work together to improve cyber security without losing visibility.
Jaq Evans
10.2.18
The CTO's Take on the Microsoft Azure Virtual Network TAP
What should SecOps and CISOs take away from Microsoft's new network traffic mirroring capability? Learn why the Azure Virtual Network TAP (vTAP) is a huge advance for public cloud computing, according to ExtraHop's co-founder and CTO Jesse Rothstein.
Jesse Rothstein
10.1.18
Signal From Noise: ExtraHop Reveal(x) Signal Metrics
Imagine you're a security analyst just beginning an investigation. How do you know which data will be most relevant? Here's how ExtraHop Reveal(x) signal metrics help you quickly understand all the information you need to respond to a potential threat.
Chase Snyder
9.25.18
Azure Secures the Enterprise with Virtual Network TAP
Microsoft's Virtual Network TAP is a gamechanger for enterprise cloud customers, especially with the release of ExtraHop Reveal(x) for Azure. Learn why the vTAP secures Azure the enterprise, and why network traffic analysis with Reveal(x) is a critical source of security intelligence in the cloud.
Eric Thomas
