Security analytics, trends, experiments, and more.

Blog Categories:

See the difference between what ExtraHop Reveal(x) sees and what Darktrace sees—or doesn't see—during a brute force attack and sensitive database compromise.

How can your SOC resolve security issues up to 77% faster than anyone else? Check out the visual comparison of automated investigation vs. a multi-tool workflow to find out!

ExtraHop users, there's a nasty new Android worm that spreads via remote debugging services, but don't worry—install this remote ADP connections dashboard to quickly find and shut down at-risk devices.

Network scanning and port scanning aren't inherently hostile, but they're often used maliciously. Learn to tell the difference between safe and hostile scanning on your network.

In part two of this info-packed blog series on how increased encryption is reshaping enterprise security, learn how SecOps can decrypt and analyze encrypted information safely and effectively.

Learn how Reveal(x) and Phantom enable you to automatically investigate potential data exfiltration, vet newly added DNS servers, and block unauthorized database access.

Learn about the serious consequences increasingly encrypted network data has for SecOps teams that rely on analytics—and why most network security vendors aren't helping—in this first blog in a two-part series.

Opportunistic attacks are easy to block, but targeted and advanced attacks take a combo of time, skill, and an integrated security workflow. Learn how Palo Alto Networks and ExtraHop Reveal(x) work together to give you a shortcut for late stage threat hunting!

Next gen security programs will be measured by dwell time more than any other metric. Here's why.

Now that PFS is required by TLS 1.3, what happens if ExtraHop customers can't install session forwarding software? Don't worry! Check this guide to learn how to forward session keys from F5 Local Traffic Managers (LTM) to ExtraHop.

In May 2017, WannaCry shook the world in a massively effective ransomware attack affecting 150 countries. One year later, has the tech industry learned its lesson? Check out this CIO Dive interview with ExtraHop's VP of Security and 3 other security experts about what made WannaCry so successful, how the industry has evolved since, and what's next for cyber security and ransomware defense.

Not sure how to maintain IT and security visibility now that TLS 1.3 requires perfect forward secrecy encryption? Watch this webinar (or read the transcript!) for current encryption trends, what's next for TLS 1.3, and how ExtraHop provides an elegant and lightweight solution to the visibility challenge.

Build Something Great

Join the company that was named one of Seattle's Best Companies to Work For.