11.4.22
How to Respond to OpenSSL Vulnerabilities
Learn about the risk of OpenSSL vulnerabilities, how to identify devices running OpenSSL, and how to spot exploit attempts after the initial intrusion.
Jeff Costlow
9.30.22
Exchange Server Security Challenges Explained
How to secure and monitor Microsoft Exchange Server and why decryption is a critical capability for security solutions. Learn more from ExtraHop.
Jeff Costlow
4.15.22
April Patch Tuesday Vulnerabilities: What You Need to Know
Learn about the risks and remediations for the latest Microsoft Patch Tuesday vulnerabilities.
Jeff Costlow
3.31.22
How the Spring4Shell Zero-Day Vulnerability Works
Learn how the Spring4Shell zero-day vulnerability works and how it could be weaponized by attackers.
Edward Wu
3.31.22
Detect and Stop Spring4Shell Exploitation
Get recommendations for how to detect Spring4Shell exploitation and learn how you can use ExtraHop to stop attacks that leverage this vulnerability.
Jeff Costlow
3.14.22
Practical Steps for Responding to the CISA Warning on Russian Cyber Attacks
Learn common attack techniques and get practical tips for implementing CISA's Shields Up guidance.
Mark Bowling
3.11.22
Shields Up: A CEO's Guidance for Corporate Leaders on Cybersecurity Readiness
Cybersecurity is essential for any modern organization. As the risk of cyberattacks rises, now is the time for CEOs to reconnect with SecOps teams.
Patrick Dennis
2.24.22
Build Resilience Amid Rising Risk of Russian Cyberthreats
With the invasion of Ukraine underway, the risk of cyberattacks is rising. Learn what to expect and steps you can take to reduce your attack surface.
Mark Bowling
12.17.21
Detect Log4j Attacks Hiding in Encrypted Traffic
Learn how attackers are using encrypted protocols to hide Log4j attacks and why decryption has become a necessary capability for detection.
Jeff Costlow
12.10.21
Log4j Exploits Explained
Understand Log4j exploitation and how to remediate this zero-day vulnerability with ExtraHop Reveal(x).
Jeff Costlow
11.4.21
Find Exploit Attempts Against the CISA Known Exploited Vulnerabilities
CISA sets tight deadlines to patch exploited CVEs. Learn how you can detect network-based vulnerabilities faster.
Jeff Costlow
10.25.21
Wildcard Certificate Risks and the ALPACA TLS Attack
Understand wildcard certificate risks, the ALPACA attack, and how to check whether wildcard certificates are putting your organization at risk.
Jeff Costlow
9.23.21
Understand and Detect vCenter Vulnerability Exploitation
The vulnerability to vCenter Server presents serious risk to organizations. Learn how to detect malicious activity surrounding this vulnerability.
Jeff Costlow
8.25.21
How ExtraHop Shut Down a C&C Beaconing Attack
A compromised VPN client infects a print server and accesses a critical networking admin tool, ExtraHop Reveal(x) detectors fire.
Daniel Chu
8.19.21
Security Alert: New Vulnerability Grants IoT Camera Remote Access
A critical vulnerability affects an estimated 83 million recording devices, allowing attackers access to live feed and enabling remote code execution.
Jeff Costlow
8.11.21
PetitPotam: Expanding NTLM Relay Attacks
Learn how the PetitPotam exploit enables a new variant of NTLM relay attack targeting Active Directory—and how to detect and stop it.
Preston Crowe
7.15.21
SonicWall Ransomware Warning: Attacks via SRA & SMA Devices
ExtraHop overviews the the SonicWall ransomware warning for SRA & SMA devices and how to detect attacks.
Jeff Costlow
7.6.21
REvil Ransomware Attack and Supply Chain Risk
The latest REvil ransomware attack is a sophisticated supply chain-based attack on software provider Kaseya that has put up to 1,500 customers at risk.
Jeff Costlow
7.2.21
PrintNightmare Vulnerability: Detection, Explanation, and Mitigation
What you need to know about the latest PrintNightmare vulnerability (CVE-2021-34527), how it differs from other recent issues with the Print Spooler service, and what you can do to secure your organization.
Jeff Costlow
5.19.21
Ransomware Is Getting Worse, and a New Name to Prove It: Multifaceted Extortion
Security researcher FireEye Mandiant noted an alarming rise of encryption combined with exfiltration in ransomware attacks. Read more M-Trends Report findings.
Mike Campfield
