12.19.20
How to Identify Malicious Network and Port Scanning
Network scanning and port scanning aren't inherently hostile, but they're often used maliciously. Learn to identify malicious network scanning and differentiate it from benign behavior.
Christine Shaw
12.14.20
Designing a Color System: Intuitive UX and Happy Developers
Learn how the ExtraHop UX team redesigned our color system.
Creighton Chamberlain
11.20.20
The Tricks of Our Trade: How Reveal(x) Uses Machine Learning
Machine learning is not magic, and not all machine learning is created equal. ExtraHop Reveal(x) makes life easier for security teams with ML subsystems for Perception, Detection, and Investigation.
Edward Wu
9.4.20
How to Respond to Incidents Quickly Despite Intentionally Confusing False Flags
False flags are deliberately planted details meant to distract or mislead investigators. Learn what to look out for and how to get more context.
Chase Snyder
9.1.20
Strange Behavior: The Case for Machine Learning in Cybersecurity
Many people are justifiably skeptical of machine learning's value. The strongest case for ML in cybersecurity lies in detecting unusual behavior that other approaches miss.
Chase Snyder
8.28.20
How To Monitor Sensitive Data & Stop Exfiltration via The Network
Monitoring sensitive data movement in the enterprise network can stop breaches by catching insider threats or adversaries before they can exfiltrate valuable data. This post outlines why the status quo isn't enough, and how network detection and response tools can help.
Chase Snyder
8.27.20
Uncovering the Unknown: Proactive, Covert Identification of Evasive Threats
Attackers are constantly evolving their tactics and techniques to avoid detection. But attackers can't eliminate all traces of their activities. Here is how ExtraHop Reveal(x) streamlines the threat hunting process.
Jesse Munos
8.27.20
Ready for Federal: Reveal(x) in Continuous Diagnostics & Mitigation (CDM) Program
With ExtraHop Reveal(x) now available under the CDM APL, U.S. federal agencies have new ways to add industry-leading network detection and response capabilities.
Patrick Park
8.26.20
SANS on Building Effective SOC Teams Despite the Skills Gap
A recent SANS survey found that, because of budget limitations, more companies are reconsidering their security staff hiring. Given that necessary skills are still in demand, Security Operations Managers will need to take a different approach to bridge the gap.
Carol Caley
7.7.20
Easy Multi-Factor Authentication: JumpCloud SSO With SAML
Learn how you can leverage JumpCloud SSO with SAML for an uncomplicated approach to multi-factor authentication that works in environments without an existing identity provider.
Thomas Smith
6.3.20
Putting Machine Learning to Work for Enterprise IoT Security
Learn why network segmentation isn't feasible for IoT security, and how to detect cyberattacks in IoT service layers with machine learning from ExtraHop Reveal(x).
Edward Wu
5.29.20
What's Worse? RDP Open to the Internet or Closing Up Shop? RDP Best Practices to Follow in 2020
Enabling remote desktop protocol has been a popular choice for IT teams in the mad dash of WFH access in 2020. Read five best practices to follow.
Chase Snyder
5.19.20
Reveal(x) 360 Technical Innovations
See how ExtraHop makes SaaS-based NDR security easily attainable, scalable, and cost-efficient for hybrid enterprises to discover, monitor, and protect all digital assets.
Ted Driggs
5.18.20
With Cybersecurity Budgets Under Scrutiny, It's Time to Get Into Shape
IT leaders need to make the most of their existing resources. By consolidating their toolset, they can maximize the impact of their budget and staff. Read the blog to learn how.
Tyson Supasatit
5.15.20
Longread: Should You Use Zoom?
Now that business (and your social life) runs on Zoom, what are the security issues that have plagued the video conferencing giant—and how serious are they, really? Read the blog for a breakdown.
Carol Caley
5.6.20
Security Report: Connected Devices During COVID-19
Read new research from ExtraHop showing the impact of COVID-19 on IoT and device connectivity, and see what these surprising data points tell us about the future of IT security.
Celine Rosak
5.5.20
TCP Windowing: What Is It, Scaling, and Tips
Learn about TCP windowing covering perspectives of a server as the receiver and a client as the sender.
Christine Shaw
4.20.20
Ask the Expert Series: What Are SPANs and Taps?
Watch the video to get the basics about SPANs and TAPs and how they could affect physical connections and data feed from ExtraHop's Josh Snow and Ixia's Hans Hohenner.
Ryan Davis
4.16.20
Exposing Citrix Latency Caused by VPN Overload
Learn how to quickly detect and investigate Citrix latency due to increased VPN usage with network detection and response.
Celine Rosak
3.25.20
What's New in ExtraHop 8.0 and Reveal(x)
Learn about the new features and capabilities included in our 8.0 release of ExtraHop and Reveal(x), including more powerful investigation tools, device model set filtering, and more.
Jeena Khan
