[{"_1":2,"_1946":-5,"_1947":-5},"loaderData",{"_3":4,"_7":8},"root",{"_5":6},"preprod",false,"routes/blog/index",{"_9":10,"_157":255,"_273":274,"_335":336,"_337":338,"_1249":1250,"_1251":51,"_1252":1253,"_1254":1255},"page",{"_11":12,"_13":14,"_15":16,"_17":18,"_19":19,"_20":21,"_34":35,"_45":46,"_47":48,"_49":12,"_50":51,"_52":53,"_54":55,"_56":57,"_58":59,"_60":61,"_172":252,"_253":254},"createdDate",1737878647415,"id","65f3299e49a461b4b9c7296a","name","Blog","modelId","3fa669f9656b425bbe84446dd9c5a7cd","published","meta",{"_22":23,"_24":6,"_25":9,"_26":27},"lastPreviewUrl","https://prod.huntress.com/blog?builder.space=3eb6f92aedf74f109c7b4b0897ec39a8&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2Cadmin%2CeditLayouts%2CeditLayers%2CeditContentPriority&builder.user.role.name=Admin&builder.user.role.id=admin&builder.cachebust=true&builder.preview=page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.page=65f3299e49a461b4b9c7296a&builder.overrides.65f3299e49a461b4b9c7296a=65f3299e49a461b4b9c7296a&builder.overrides.page:/blog=65f3299e49a461b4b9c7296a&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default","hasLinks","kind","breakpoints",{"_28":29,"_30":31,"_32":33},"xsmall",479,"small",767,"medium",991,"query",[36],{"_37":38,"_39":40,"_41":42,"_43":44},"@type","@builder.io/core:Query","property","urlPath","operator","is","value","/blog","variations",{},"lastUpdated",1747062560084,"firstPublished","testRatio",1,"screenshot","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fb7f93b4988dd4be9b2f279c5db6b8eda","createdBy","Kz459QsZDzNpORbTSiA9L6WRQc23","lastUpdatedBy","XBN8lOXr7QMH6JvQimte3OCtO6c2","folders",[],"data",{"_62":63,"_64":65,"_66":67,"_68":63,"_69":70,"_71":63,"_72":73,"_77":44,"_74":63,"_78":79,"_80":81,"_82":83,"_84":85,"_100":101,"_243":244},"title","","openGraphImage","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F28e05784f2584d25824e4b27c802f97a","openGraphDescription","Cybersecurity is dynamic and ever-changing. Stay up-to-date with the latest information about cyber threats, vulnerabilities, and news on the Huntress blog.","metaDescription","slug","blog","titleTag","metadata",{"_74":67,"_64":75,"_62":76},"description","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F78060584ce444ba5a726170f7951a8ec","Huntress Blog","url","sitemapIndexing",true,"openGraphTitle","Huntress Blog | Huntress","contentTagCategories","DEPRECATED","contentTags",{"_86":87,"_88":89,"_90":91,"_92":93,"_94":95,"_96":97,"_98":99},"funnelStageTags",[],"regionTags",[],"aiGeneratedContentTags",[],"audienceTags",[],"industryTags",[],"productTags",[],"repurposedContentTags",[],"blocks",[102,188,197,220],{"_37":103,"_104":105,"_13":106,"_107":108,"_174":175},"@builder.io/sdk:Element","@version",2,"builder-4304305f148848f68b3ca6d6c71746ce","component",{"_15":109,"_110":111},"BlogFeatureBannerSection","options",{"_112":113,"_120":76,"_121":122,"_123":79,"_124":125},"breadcrumbs",[114,119],{"_115":116,"_117":118},"levelText","Home","levelLinkUrl","/",{"_115":16},"heading","summary","

Welcome to the Huntress Cybersecurity Blog, your go-to spot for staying ahead of\n hackers and boosting your cybersecurity savviness. Our\n blog contributors have focused on\n making cybersecurity education engaging and accessible for everyone.

","showFeaturedBlog","featuredBlog",{"_37":126,"_13":127,"_128":129,"_43":130},"@builder.io/core:Reference","67a67e43a1912da0aa6bde9c","model","blog-posts",{"_34":131,"_58":132,"_11":133,"_13":127,"_15":134,"_17":135,"_19":19,"_20":136,"_60":138,"_45":170,"_47":171,"_49":133,"_50":51,"_54":55,"_56":55,"_172":173},[],[],1742717076617,"Huntress 2025 Cyber Threat Report: Proliferating RATs, Evolving Ransomware, and Other Findings","beafe50240af45639f2b59e6aefd89f9",{"_26":137,"_22":63,"_25":60},{"_28":29,"_30":31,"_32":33},{"_139":-5,"_15":134,"_140":141,"_142":79,"_72":143,"_148":149,"_155":156,"_157":158,"_164":165,"_69":166,"_167":168,"_121":169},"lastUpdatedDate","canonicalUrl","https://www.huntress.com/blog/huntress-2025-cyber-threat-report-proliferating-rats-evolving-ransomware-and-other-findings","featured",{"_144":6,"_62":145,"_146":6,"_74":147},"noFollow","2025 Cybersecurity Threat Report: Proliferating RATs, Evolving Ransomware, and Other Findings | Huntress","noIndex","Huntress’ 2025 Cyber Threat Report is here! Explore the year's biggest threats—RATs, phishing, ransomware—and how evolving tactics demand smarter defense.","authors",[150],{"_151":152},"author",{"_37":126,"_13":153,"_128":154},"66048598851912ddf28adf1a","people","publishDate","2025-02-11T00:00:00.000Z","categories",[159],{"_160":161},"category",{"_37":126,"_13":162,"_128":163},"65f3299e49a461b4b9c72e4d","blog-categories","thumbnail","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ffc25dbb530b84cb79bc232519d83b123?format=webp","huntress-2025-cyber-threat-report-proliferating-rats-evolving-ransomware-and-other-findings","content","

At Huntress, we like to wreck hackers. But to take them down, we first have to understand how they operate. That’s why we created the 2025 Cyber Threat Report—an in-depth exploration of the nasty tactics, trends, and techniques reshaping cybersecurity today.

Here, we highlight key findings from the past year, offering a snapshot of the malicious strategies our analysts uncovered. Whether you’re an IT professional, cybersecurity practitioner, or business owner, these insights can provide actionable guidance to help you stay one step ahead of ever-evolving cyber threats.

Top takeaways from the 2025 Cyber Threat Report

Throughout 2024, Huntress' threat analysts looked at data from thousands of organizations and millions of endpoints, revealing the key trends that show how adaptable and relentless today’s malicious hackers are.

Remote access trojans (RATs) are more popular: Over 75% of remote access incidents utilized RATs such as AsyncRAT and Jupyter. These tools are becoming more sophisticated, making multilayered defenses like endpoint detection and response (EDR) essential.
Remote monitoring and management (RMM) tools are being exploited. Attackers are weaponizing legitimate software like TeamViewer and LogMeIn to facilitate lateral movement and maintain long-term access to systems. For environments that use RMM tools, we highly suggest increasing vigilance, enhancing access controls, and closely monitoring your tools.
Ransomware strategies are evolving: Attacks are shifting from traditional encryption to data theft and extortion. Groups like RansomHub and Akira now incentivize stolen data with big rewards, making these tactics quite lucrative. The future may see ransomware operators leaning even more into extortion (or double extortion) strategies—a trend driven by the efficacy of EDR solutions and mounting pressure from government takedown efforts.
“Living off the land” techniques are on the rise: Threat actors are doubling down on using legitimate tools like Sysinternals Suite and LOLBins to evade detection. Organizations must remove unnecessary software and enforce strict execution policies to mitigate this threat.
Phishing tactics are becoming more advanced: From QR code phishing to brand impersonation, threat actors are deploying clever methods to outsmart traditional email security. Improving security awareness training and implementing layered defenses are more essential than ever to counter these sophisticated techniques.

How these trends took shape in 2024

The findings from our 2025 Cyber Threat Report are grounded in real-world data with a comprehensive view of how malicious hackers operate today. Our threat analysts observed patterns across industries like healthcare, education, government, and manufacturing, and these growing trends stood out:

Infostealers are gaining momentum: Nearly 24% of incidents involved infostealers designed to extract sensitive credentials, financial data, and other private information.
Malicious scripts are surging: Scripts made up 22% of detected attacks, using PowerShell, VBScript, and JavaScript to perform stealthy, efficient attacks.
Ransomware is fragmenting: Despite takedowns of large groups like Hive and LockBit, smaller, flexible affiliates have risen to fill the gap. Unfortunately, this led to more unpredictable, widespread attacks.

\"Industries — Industries targeted by percentage

Why these findings matter

The 2024 cybersecurity landscape exposes a simple yet alarming truth: threat actors aren’t slowing down. Because hackers' tactics and tools are evolving, you must take a proactive approach that prioritizes awareness, preparation, and consistent upgrades to defense strategies.

Understanding the tactics outlined in this report is the first essential step. By educating your teams, using multiple layers of security, and staying informed about emerging risks, you and your organization will be ready to take on any challenges that come your way.

\"Huntress — *Huntress 2025 Cyber Threat Report*

Get more from the report and stay one step ahead

The insights from our 2025 Cyber Threat Report spotlight the critical need to stay ahead of malicious hackers. With tools like RMM software and phishing techniques becoming more advanced, protecting data, systems, and users is an ongoing battle—but one you can win.

While there’s no one-size-fits-all solution, embracing layered defenses, removing unnecessary vulnerabilities, and training your team to spot threats are actionable steps everyone should take right now.

Download the entire 2025 Cyber Threat Report to gain a deeper understanding of these trends and learn more strategies for keeping your organization safe.

","

",{},1744303952880,"rev","hwzdvmzufhl","responsiveStyles",{"_176":177},"large",{"_178":179,"_180":181,"_182":183,"_184":185,"_186":187},"display","flex","flexDirection","column","position","relative","flexShrink","0","boxSizing","border-box",{"_37":103,"_104":105,"_13":189,"_107":190,"_174":195},"builder-4c139472c097464e87c1ec73f00f7381",{"_15":191,"_110":192},"BlogListSection",{"_193":194},"pageSize",15,{"_176":196},{"_178":179,"_180":181,"_182":183,"_184":185,"_186":187},{"_37":103,"_104":105,"_13":198,"_107":199,"_174":218},"builder-09dcd692cdf94623b83c105f1fac9802",{"_15":200,"_110":201},"BlogSignupSection",{"_120":202,"_121":203,"_204":205,"_206":207},"Sign Up for Huntress Updates","Get insider access to Huntress tradecraft, killer events, and the freshest blog updates.","image","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fcb5efa5143804ba59d530a903d29fe5f","blogSignupForm",{"_208":209,"_210":6,"_211":212,"_213":214,"_215":6,"_216":6,"_217":6},"formId","wf-form-Blog-Signup-Form","showFormTitle","submitButtonText","Submit","hubspotFormId","5198e52f-a296-4d78-935d-fe864d69a67a","showBlueGreenGradient","showBluePurpleGradient","useNeverBounce",{"_176":219},{"_178":179,"_180":181,"_182":183,"_184":185,"_186":187},{"_13":221,"_37":103,"_222":223,"_224":225,"_174":235},"builder-pixel-ainppsxwve","tagName","img","properties",{"_226":227,"_228":229,"_230":63,"_231":232,"_233":185,"_234":185},"src","https://cdn.builder.io/api/v1/pixel?apiKey=3eb6f92aedf74f109c7b4b0897ec39a8","aria-hidden","true","alt","role","presentation","width","height",{"_176":236},{"_234":185,"_233":185,"_178":237,"_238":185,"_239":240,"_241":242},"block","opacity","overflow","hidden","pointerEvents","none","state",{"_245":176,"_246":247},"deviceSize","location",{"_248":44,"_249":250,"_34":251},"pathname","path",[70],{},"v3zrtw3mhak","template","huntress",[256,259,261,264,267,270],{"_13":257,"_15":258},"65f3299e49a461b4b9c72e33","Business Growth",{"_13":162,"_15":260},"Cybersecurity Education",{"_13":262,"_15":263},"65f3299e49a461b4b9c72e34","Cybersecurity Trends",{"_13":265,"_15":266},"65f3299e49a461b4b9c72e8a","Huntress News",{"_13":268,"_15":269},"65f3299e49a461b4b9c72e32","Response to Incidents",{"_13":271,"_15":272},"65f3299e49a461b4b9c72e31","Threat Analysis","featuredBlogPost",{"_13":275,"_15":276,"_60":277},"65f3299e49a461b4b9c7292a","Navigating the SMB Threat Landscape: Key Insights from Huntress’ SMB Threat Report",{"_69":278,"_164":279,"_157":280,"_155":307,"_139":-5,"_148":308,"_142":79},"navigating-the-smb-threat-landscape-key-insights-from-huntress-smb-threat-report","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F25d75ed735a34023a4e0b3e874210f25",[281,295],{"_160":282},{"_37":126,"_13":162,"_128":163,"_43":283},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":286,"_172":294},1739997399371,"b7b51689bde4424484bccde4b9ee6d6b",{"_15":260,"_69":287,"_72":288,"_291":289,"_68":290,"_140":292,"_74":293},"cybersecurity-education",{"_62":289,"_74":290},"Cybersecurity Education Blog Posts | Huntress","Read more about Cybersecurity Education in these Huntress blog posts. ","metaTitle","https://www.huntress.com/blog-categories/cybersecurity-education","

Cybersecurity education should be accessible and actionable, not jargony. Welcome to your hub for mastering the fundamentals and beyond. Get education and advice from our experts to deepen your knowledge and stay ahead of cyber threats—made for all levels.

","8fecuo8hwqo",{"_160":296},{"_37":126,"_13":262,"_128":163,"_43":297},{"_13":262,"_15":263,"_19":19,"_11":298,"_17":285,"_60":299,"_172":306},1739997399701,{"_15":263,"_69":300,"_72":301,"_291":302,"_68":303,"_140":304,"_74":305},"cybersecurity-trends",{"_62":302,"_74":303},"Cybersecurity Trends Blog Posts | Huntress","Read more about Cybersecurity Trends in these Huntress blog posts. ","https://www.huntress.com/blog-categories/cybersecurity-trends","

Stay a step ahead with insights into the latest developments shaping the cybersecurity landscape. From emerging threats to breakthrough technologies, we analyze how these trends impact your security strategy so you can adapt your defenses accordingly.

","3iewdfrhvf5","November 21, 2023",[309],{"_151":310},{"_37":126,"_13":153,"_128":154,"_43":311},{"_13":153,"_15":312,"_19":19,"_11":313,"_17":314,"_60":315,"_172":334},"Team Huntress",1742719371598,"d50b5ec346a64579b280b4104dca236e",{"_15":312,"_69":316,"_72":317,"_320":321,"_322":-5,"_323":324,"_325":326},"team-huntress",{"_62":318,"_74":319,"_146":6,"_144":6},"Team Huntress | Huntress","Read blog posts written by the amazing Huntress team on the Huntress Blog.","profileImage","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F94d27b5ca67c40d698b6b9f3f52bc4dc","profileImageAltText","bioDetail","

These resources have been written by some of the fantastic experts on our team. And if they’re at Huntress they’re probably ethical badasses who enjoy working every day to protect small and medium-sized businesses.

Our authors often come from backgrounds in gaming, tech innovation, IT, military intelligence, and a mix of unrelated but awesome careers like teaching, baking, music, law, and graphic design, just to name a few.

We’re a diverse team of pros who love hunting down threats, identifying trends, and writing about what we’re seeing so that everyone can benefit.

Meet more Huntress authors here.

‍

","groups",[327,331],{"_328":329},"group",{"_37":126,"_13":330,"_128":325},"00d1d80145b14a6b87c45567b169a8f4",{"_328":332},{"_37":126,"_13":333,"_128":325},"babc0d8823f34ab894a4431d5b302dc7","06ybbivx8jh","builderApiKey","3eb6f92aedf74f109c7b4b0897ec39a8","blogPosts",[339,398,436,485,544,608,660,705,731,796,932,1019,1075,1120,1162],{"_13":340,"_15":341,"_60":342},"ed2ba91a6ff740349f4c0fd6d43d6598","Huntress Lands on the Microsoft Marketplace",{"_69":343,"_164":344,"_157":345,"_155":358,"_148":359,"_139":-5,"_396":397},"huntress-available-on-marketplace-microsoft","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe212b1b9af414e11851cdab80c823531",[346],{"_160":347},{"_37":126,"_13":265,"_128":163,"_43":348},{"_13":265,"_15":266,"_19":19,"_11":349,"_17":285,"_60":350,"_172":357},1739997399001,{"_15":266,"_69":351,"_72":352,"_291":353,"_68":354,"_140":355,"_74":356},"huntress-news",{"_62":353,"_74":354},"Huntress News - Blog | Huntress","Read more about Huntress in the News in these Huntress blog posts. ","https://www.huntress.com/blog-categories/huntress-news","

Get the latest news, updates, and announcements from the Huntress team, including product launches, company milestones, and notable achievements.

","z70em231ffg","November 17, 2025",[360],{"_151":361},{"_37":126,"_13":362,"_128":154,"_43":363},"d28d6e3ca75f4003ae36c1e4866bbd4d",{"_11":364,"_13":362,"_15":365,"_17":314,"_19":19,"_20":366,"_34":368,"_60":369,"_45":389,"_47":390,"_49":391,"_50":51,"_54":392,"_56":393,"_58":394,"_172":395},1744049019332,"Aimee Simpson",{"_26":367,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_320":370,"_371":372,"_325":373,"_322":376,"_72":377,"_15":365,"_379":380,"_381":382,"_383":384,"_69":385,"_386":387,"_323":388},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F1ad76c8cc09c4ec6bacabb266bd16cde","firstName","Aimee",[374],{"_328":375},{"_37":126,"_13":330,"_128":325},"Aimee Simpson Huntress",{"_74":378,"_62":365},"Read blog posts from Aimee Simpson on the Huntress Blog.","lastName","Simpson","companyName","Huntress ","linkedInUrl","https://www.linkedin.com/in/aimeesimpson/","aimee-simpson","jobTitle","Director, Product Marketing","

Aimee is a Director of Product Marketing at Huntress. She acts as the critical bridge between product development and the market, translating technical innovations into tangible value for security and IT professionals. She's responsible for orchestrating successful product launches, conducting deep market research to inform product strategy, and crafting compelling narratives that resonate with the challenges faced by today's security teams. Previously, she held product and solutions marketing roles at other security and technology companies, including Mimecast, Code42, and Dell.

Aimee's favorite cybersecurity tip is to adopt the mindset of a hacker. It's easy to talk about best practices and think you've learned how to stay safe, but the more you learn about hacker motivations and techniques, the easier it is to spot them in the wild. This is extra true when it comes to how security awareness training should be approached for learners.

",{},1755181282547,1744049133929,"rqPhimgdOfVCrDCbaxcCVZPJeJc2","ksrtPDlNQGhJESnopKjn4sdUP2x1",[],"dgxfbz8yvpn","sortDate",["D",1763388000000],{"_13":399,"_15":400,"_60":401},"65f3299e49a461b4b9c72de2","What Should A Modern Cybersecurity Stack Look Like?",{"_69":402,"_164":403,"_157":404,"_155":411,"_139":358,"_148":412,"_142":6,"_396":435},"what-should-a-modern-cybersecurity-stack-look-like","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fd1fcdf54b592449ea70356d8a9e9decb",[405],{"_160":406},{"_37":126,"_13":162,"_128":163,"_43":407},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":408,"_172":410},{"_15":260,"_69":287,"_72":409,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"aq0zjbm5k4o","February 22, 2022",[413],{"_151":414},{"_37":126,"_13":415,"_128":154,"_43":416},"66048bf72556b5ac127e6cc3",{"_13":415,"_15":417,"_19":19,"_11":418,"_17":314,"_60":419,"_172":434},"Shane Rose",1742719352790,{"_15":417,"_69":420,"_72":421,"_320":424,"_322":-5,"_386":425,"_323":426,"_381":427,"_383":428,"_325":429},"shane-rose",{"_62":422,"_74":423,"_146":6,"_144":6},"Shane Rose | Huntress","Read blog posts from Shane Rose on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F8af5aa18e40b49f0aff7e11ffa9c15ba","Manager, Sales Engineering","

Formerly a Huntress customer, Shane was so impressed by Huntress’s solutions that he joined our team.

Shane Rose’s journey into cybersecurity began after nearly 20 years in IT consulting, primarily focusing on small and mid-enterprise clients. He noticed that many businesses struggled with security due to a lack of understanding or resources. “I spent much of my time designing and building networks as securely as possible while still seeing bad actors be successful versus the typical tools and equipment on the market designed to stop them at the time,” Shane explains. His perspective shifted when his firm started using Huntress, a move that ultimately led him to join the Huntress Sales Engineering team.

Specializing in a broad range of security tools, from firewalls and IDS/IPS to endpoint software, Shane leverages his extensive consulting background in his role. He engages in consultative conversations around various cyber topics, acting as a trusted advisor to partners and customers. “I try to use my background and experience to help educate people on what effective security stacks look like and how they function to mitigate risk,” says Shane.

Shane holds certifications including MCSE, CCNA, and CCNP. His favorite part of working at Huntress? The ability to make a tangible difference in improving security posture for under-served businesses. “We can see the difference we are making out there in a very under-served portion of business when it comes to cyber awareness and preparedness,” Shane says.

Before joining Huntress, Shane worked in MSP and IT consulting. Outside of work, he enjoys aviation, having earned his private pilot's license a few years ago. He is also a member of a Cyber Guild in Tampa called Neon Temple, which helps grow people in their professional cybersecurity journey. In his free time, Shane enjoys gaming, technology, and continuous learning.

What's your favorite cybersecurity tip, Shane?

“Stay curious and stay skeptical of everything!”

Can’t argue with that. While you’re here, give Shane a follow on LinkedIn.

‍

","Huntress","https://www.linkedin.com/in/shane-rose-6482594/",[430,432],{"_328":431},{"_37":126,"_13":330,"_128":325},{"_328":433},{"_37":126,"_13":333,"_128":325},"ud2sv8sslu",["D",1763384400000],{"_13":437,"_15":438,"_60":439},"dbf5f1e2c4da47e491b501c625658172","Sector Spotlight: Threats Plaguing Education",{"_69":440,"_164":441,"_157":442,"_155":448,"_148":449,"_139":-5,"_396":484},"threats-against-education","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fab91aae300894d7ebcafde08ed3e900d",[443],{"_160":444},{"_37":126,"_13":162,"_128":163,"_43":445},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":446,"_172":410},{"_15":260,"_69":287,"_72":447,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"November 13, 2025",[450],{"_151":451},{"_37":126,"_13":452,"_128":154,"_43":453},"7fb779bf8ddf42fda6c8463ccdf60a68",{"_11":454,"_13":452,"_15":455,"_17":314,"_19":19,"_20":456,"_34":458,"_60":459,"_45":478,"_47":479,"_49":480,"_50":51,"_54":481,"_56":57,"_58":482,"_172":483},1744385801818,"Lindsey O'Donnell-Welch",{"_25":60,"_22":63,"_26":457},{"_28":29,"_30":31,"_32":33},[],{"_383":460,"_320":461,"_323":462,"_379":463,"_464":465,"_72":466,"_371":468,"_386":469,"_322":470,"_69":471,"_381":427,"_325":472,"_15":455},"https://www.linkedin.com/in/lindsey-o-donnell-welch-abb72b4a/","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F037877a541484d86ac239373c502608a","

With more than a decade of experience translating complex security topics into compelling stories, Lindsey brings a sharp editorial eye and a passion for clarity to the Huntress team. Her mission? Breaking down the intricate world of cybersecurity to make it accessible for everyone. It’s one of the many reasons she loves being part of Huntress, where educating the public about threats takes center stage.

Before joining Huntress, Lindsey built her reputation in journalism, covering the intersection of technology and businesses. She’s reported for top cybersecurity publications like Threatpost and Decipher, delivering trusted coverage on everything from the SolarWinds supply chain breach to the SEC’s cybersecurity disclosure rules.

Lindsey’s go-to security advice? “Enable MFA and use a password manager—your future self will thank you.”

When she’s not writing about cyber threats, you’ll likely find her on the tennis court or exploring new trails with her endlessly energetic pup.

","O'Donnell-Welch","altText","Huntress Default Headshot Image",{"_62":455,"_74":467},"Read blog posts from Lindsey O'Donnell-Welch on the Huntress Blog.","Lindsey ","Staff Technical Community Engagement Writer","Lindsey O'Donnell-Welch Huntress ","lindsey-odonnell-welch",[473,475],{"_328":474},{"_37":126,"_13":330,"_128":325},{"_328":476},{"_37":126,"_13":477,"_128":325},"797c68793452421a98fcd85d40aa6d84",{},1754428413667,1744404673182,"0dThli925XPdcsMI4MRs7L7KCv22",[],"ps3bgm5bht",["D",1763013600000],{"_13":486,"_15":487,"_60":488},"e42553b551cc4fe18859399a17c6b365","Demystifying Multi-Factor Authentication for Businesses ",{"_69":489,"_164":490,"_157":491,"_155":497,"_139":498,"_148":499,"_396":543},"demystifying-multi-factor-authentication-for-businesses","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F0d68dc32a7674d9eafbddab202506d10",[492],{"_160":493},{"_37":126,"_13":162,"_128":163,"_43":494},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":495,"_172":410},{"_15":260,"_69":287,"_72":496,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"July 23, 2025","November 7, 2025",[500,515],{"_151":501},{"_37":126,"_13":452,"_128":154,"_43":502},{"_11":454,"_13":452,"_15":455,"_17":314,"_19":19,"_20":503,"_34":505,"_60":506,"_45":513,"_47":479,"_49":480,"_50":51,"_54":481,"_56":57,"_58":514,"_172":483},{"_25":60,"_22":63,"_26":504},{"_28":29,"_30":31,"_32":33},[],{"_383":460,"_320":461,"_323":462,"_379":463,"_464":465,"_72":507,"_371":468,"_386":469,"_322":470,"_69":471,"_381":427,"_325":508,"_15":455},{"_62":455,"_74":467},[509,511],{"_328":510},{"_37":126,"_13":330,"_128":325},{"_328":512},{"_37":126,"_13":477,"_128":325},{},[],{"_151":516},{"_37":126,"_13":517,"_128":154,"_43":518},"132288e7391b453db19780e2d72554c2",{"_11":519,"_13":517,"_15":520,"_17":314,"_19":19,"_20":521,"_34":523,"_60":524,"_45":538,"_47":539,"_49":540,"_50":51,"_54":481,"_56":393,"_58":541,"_172":542},1744305098372,"Beth Robinson",{"_22":63,"_25":60,"_26":522},{"_28":29,"_30":31,"_32":33},[],{"_371":525,"_325":526,"_379":529,"_322":530,"_69":531,"_383":532,"_386":533,"_72":534,"_15":520,"_381":427,"_464":465,"_323":536,"_320":537},"Beth ",[527],{"_328":528},{"_37":126,"_13":330,"_128":325},"Robinson ","Beth Robinson - Huntress Brand Technical Writer ","beth-robinson","https://www.linkedin.com/in/elizabeth-robinson-cybersecurity/","Brand Technical Writer",{"_74":535,"_62":520},"Read blog posts from Beth Robinson on the Huntress Blog.\n","

Beth Robinson’s cybersecurity journey started at the NSA, where she spent 4 years immersed in computer network exploitation (CNE). Since then, she’s stacked up over a decade of experience in security, including roles at the NSA, CIA, Mandiant, Bishop Fox, and runZero. Now, as part of the incredible Huntress Marketing team, Beth thrives on the company’s incredible mission—and, of course, the awesome people who make it happen.

Armed with a Master’s degree in International Policy Studies, Beth knows her way around complexity, but keeps things approachable. Her favorite cybersecurity tip? \"Don't click the link!\" (Simple, yet brilliant.) Love to see our Security Awareness Training working wonders.

Outside of work, Beth likes to stay connected to the Italian she learned years ago (grazie mille to a study abroad program in Bologna) and can often be found watching Formula One races with her son, cooking, traveling, hiking, or skiing. Fun fact: she even worked as a travel agent for a stint after college!

","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F20454dd8c66d49f89c342d07715f97f6",{},1754513383049,1744306946802,[],"ih821zckshf",["D",1762491600000],{"_13":545,"_15":546,"_60":547},"2f85979acf694f97aafc9934ac721595","Deobfuscating Files for Flags: Huntress CTF 2025 Retro",{"_69":548,"_164":549,"_157":550,"_155":556,"_148":557,"_139":-5,"_396":607},"huntress-ctf-2025-retro","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F7035797483dd41b587baac30060be485",[551],{"_160":552},{"_37":126,"_13":162,"_128":163,"_43":553},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":554,"_172":410},{"_15":260,"_69":287,"_72":555,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"November 6, 2025",[558,592],{"_151":559},{"_37":126,"_13":560,"_128":154,"_43":561},"66048bf51de5bd420f2f2608",{"_11":562,"_13":560,"_15":563,"_17":314,"_19":19,"_20":564,"_34":566,"_60":567,"_45":587,"_47":588,"_49":562,"_50":51,"_54":589,"_56":589,"_58":590,"_172":591},1742719359732,"John Hammond",{"_26":565,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_320":568,"_386":569,"_323":570,"_69":571,"_15":563,"_383":572,"_325":573,"_578":579,"_381":427,"_580":581,"_72":582,"_322":-5,"_585":586},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F0ebcc8e098b842e3b6c5d44ae153b485","Principal Security Researcher","

Capturing flags, thwarting threats, and making cybersecurity accessible one endpoint at a time.

John Hammond, a Principal Security Researcher at Huntress, discovered his passion for cybersecurity as an undergraduate at the US Coast Guard Academy, where competing in a “Cyberstakes” capture the flag event opened his eyes to vulnerabilities, exploits, and hacker tradecraft. At Huntress, he focuses on endpoint security, digging into living-off-the-land techniques and obfuscated scripting payloads.

With a stack of certifications—including LFCS, PCAP, CompTIA Security+, CEH, eJPT, eCPPT, OSCP, OSCE (classic and 3), OSWP, OSEP, OSED, and OSWE—John brings serious technical prowess to the team. He’s honored to have received the RITA Award at Wild West Hacking Fest from Black Hills Information Security, and he credits the supportive, mission-driven environment at Huntress for enabling him to do meaningful work.

John is also an active voice in the community, sharing his experience through these Huntress on-demand webinars:

Before joining Huntress, John served as an instructor and curriculum developer with the Department of Defense Cyber Crime Center and Cyber Training Academy, and later as a Red Team Cyber Operator at the Defense Threat Reduction Agency.

His top cybersecurity tip is a simple one: “Use a password manager—seriously!!”

Outside of work, John loves spending time with his family and taking the rest he needs to stay sharp. He also shares his life with two dogs, Bam Bam and Pebbles—named after the beloved Flintstones characters, of course.

Give John a follow on his socials:

‍

","john-hammond","https://www.linkedin.com/in/johnhammond010/",[574,576],{"_328":575},{"_37":126,"_13":330,"_128":325},{"_328":577},{"_37":126,"_13":333,"_128":325},"instagramUrl","https://www.instagram.com/_johnhammond/","xTwitterUrl","https://twitter.com/_johnhammond",{"_144":6,"_74":583,"_62":584,"_146":6},"Read blog posts from John Hammond on the Huntress Blog.","John Hammond - Principal Security Researcher | Huntress","portraitImage","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F7743d3ad18734d4697f9e4aa467e670b",{},1752677471317,"0XU3rreLLCPzgsmuIQDqjlW9xhs2",[],"meg9ankyx6",{"_151":593},{"_37":126,"_13":452,"_128":154,"_43":594},{"_11":454,"_13":452,"_15":455,"_17":314,"_19":19,"_20":595,"_34":597,"_60":598,"_45":605,"_47":479,"_49":480,"_50":51,"_54":481,"_56":57,"_58":606,"_172":483},{"_25":60,"_22":63,"_26":596},{"_28":29,"_30":31,"_32":33},[],{"_383":460,"_320":461,"_323":462,"_379":463,"_464":465,"_72":599,"_371":468,"_386":469,"_322":470,"_69":471,"_381":427,"_325":600,"_15":455},{"_62":455,"_74":467},[601,603],{"_328":602},{"_37":126,"_13":330,"_128":325},{"_328":604},{"_37":126,"_13":477,"_128":325},{},[],["D",1762437600000],{"_13":609,"_15":610,"_60":611},"3390301a4bdf48568966ae4c06042e7d","Gootloader Returns: What Goodies Did They Bring?",{"_69":612,"_164":613,"_157":614,"_155":627,"_148":628,"_139":-5,"_396":659},"gootloader-threat-detection-woff2-obfuscation","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fc5ca2c6f28994ad1877490baf68255c5",[615],{"_160":616},{"_37":126,"_13":271,"_128":163,"_43":617},{"_13":271,"_15":272,"_19":19,"_11":618,"_17":285,"_60":619,"_172":626},1739997400726,{"_15":272,"_69":620,"_72":621,"_291":622,"_68":623,"_140":624,"_74":625},"threat-analysis",{"_62":622,"_74":623},"Threat Analysis Blog Posts | Huntress","Read our Threat Analyses in these Huntress blog posts. ","https://www.huntress.com/blog-categories/threat-analysis","

Dive in and nerd out with us on current and emerging cybersecurity threats. We cover attack vectors, threat actors, and new vulnerabilities, providing insights to help you understand and counteract these risks.

","bmpl86k4qo8","November 5, 2025",[629],{"_151":630},{"_37":126,"_13":631,"_128":154,"_43":632},"dae057447f3d420e8155f696ef55e2f7",{"_11":633,"_13":631,"_15":634,"_17":314,"_19":19,"_20":635,"_34":637,"_60":638,"_45":654,"_47":655,"_49":656,"_50":51,"_54":393,"_56":393,"_58":657,"_172":658},1756905625674,"Anna Pham ",{"_22":63,"_26":636,"_25":60},{"_28":29,"_30":31,"_32":33},[],{"_320":639,"_69":640,"_15":634,"_379":641,"_322":642,"_386":643,"_381":382,"_72":644,"_371":647,"_325":648,"_323":651,"_383":652,"_580":653},"https://ca.slack-edge.com/T095F397A-U092QEW6D8S-f16503dc82b8-512","anna-pham","Pham ","Anna Pham","Senior Hunt & Response Analyst",{"_62":645,"_74":646},"Anna Pham | Huntress ","Read blog posts from Anna Pham on the Huntress Blog. ","Anna",[649],{"_328":650},{"_37":126,"_13":330,"_128":325},"

Anna is a seasoned cybersecurity professional specializing in malware reverse engineering, threat hunting, and response. With a GIAC Reverse Engineering Malware Certification (GREM) and a career spanning roles at eSentire, Toyota, and Palo Alto, Anna brings a wealth of expertise and relentless drive to protect businesses from cyber threats.

At Huntress, Anna thrives on the proactive approach of hunting down threats before they can harm businesses of all sizes, finding immense satisfaction in making a tangible difference.

Her favorite cybersecurity tip? “Modern attackers don’t hack systems—they hack people. Be your own firewall.”

Outside of work, Anna is a self-proclaimed malware detective, capable of identifying malware families by their file artifacts. When she’s not researching cybercriminals, she’s perfecting her medium-rare steak.

Connect with her on LinkedIn, X, or her blog, TRAC Labs.

","https://www.linkedin.com/in/anna-p-868921105/","https://x.com/RussianPanda9xx",{},1757520275382,1756905768218,[],"1ckbmfviwi1",["D",1762354800000],{"_13":661,"_15":662,"_60":663},"e8ebc3d178fa46909becb0a725d4c114","How Huntress & DEFCERT Are Streamlining CMMC Assessment Prep",{"_69":664,"_164":665,"_157":666,"_155":627,"_148":672,"_139":-5,"_396":704},"huntress-defcert-streamline-cmmc-assessment-prep","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe17f0d3efdaa409db5d7b9e2483bd1a9",[667],{"_160":668},{"_37":126,"_13":265,"_128":163,"_43":669},{"_13":265,"_15":266,"_19":19,"_11":349,"_17":285,"_60":670,"_172":357},{"_15":266,"_69":351,"_72":671,"_291":353,"_68":354,"_140":355,"_74":356},{"_62":353,"_74":354},[673],{"_151":674},{"_37":126,"_13":675,"_128":154,"_43":676},"7037dd114d16428e88cd2b05f5523dae",{"_11":677,"_13":675,"_15":678,"_17":314,"_19":19,"_20":679,"_34":682,"_60":683,"_45":699,"_47":700,"_49":701,"_50":51,"_54":393,"_56":392,"_58":702,"_172":703},1761662159681,"Ryan Bonner",{"_25":60,"_680":6,"_22":63,"_26":681},"hasAutosaves",{"_28":29,"_30":31,"_32":33},[],{"_379":684,"_371":685,"_15":678,"_320":686,"_687":688,"_69":689,"_386":690,"_323":691,"_381":692,"_322":678,"_325":693,"_72":696},"Bonner","Ryan","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fda6468a8b3e747a68aaadc8cd7fd2248","jsonLd",{},"ryan-bonner","Founder and CEO, DEFCERT","

Ryan Bonner is the founder and CEO of DEFCERT where he has led DFARS and CMMC compliance transformation projects for over 150 manufacturers in the Defense Industrial Base. Ryan specializes in designing CMMC implementation plans for small and medium-sized manufacturers who utilize third-party IT service providers.

Ryan is a Marine Corps veteran with over 13 years of experience in IT security. As one of the first CMMC Provisional Assessors, Ryan has leveraged his unique insight and experience to bring context to CMMC in manufacturing environments.

Ryan has partnered extensively with the NIST Manufacturing Extension Partnership (MEP) National Network in developing and teaching DFARS and CMMC compliance training programs across the country.

","DEFCERT",[694],{"_328":695},{"_37":126,"_13":330,"_128":325},{"_74":697,"_62":698},"Read blog posts from Ryan Bonner on the Huntress Blog. ","Ryan Bonner | DEFCERT",{},1762299869858,1761662696393,[],"da8onaltgk",["D",1762351200000],{"_13":706,"_15":707,"_60":708},"0e689dff96a841259779198126b9cad3","Live Hacking Into Microsoft 365 with Kyle Hanslovan",{"_69":709,"_164":710,"_157":711,"_155":717,"_148":718,"_139":-5,"_396":730},"live-hacking-microsoft-365-kyle-hanslovan","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F34d2a3d104da450292197702d60c4cb4",[712],{"_160":713},{"_37":126,"_13":265,"_128":163,"_43":714},{"_13":265,"_15":266,"_19":19,"_11":349,"_17":285,"_60":715,"_172":357},{"_15":266,"_69":351,"_72":716,"_291":353,"_68":354,"_140":355,"_74":356},{"_62":353,"_74":354},"November 4, 2025",[719],{"_151":720},{"_37":126,"_13":153,"_128":154,"_43":721},{"_13":153,"_15":312,"_19":19,"_11":313,"_17":314,"_60":722,"_172":729},{"_15":312,"_69":316,"_72":723,"_320":321,"_322":-5,"_323":324,"_325":724},{"_62":318,"_74":319,"_146":6,"_144":6},[725,727],{"_328":726},{"_37":126,"_13":330,"_128":325},{"_328":728},{"_37":126,"_13":333,"_128":325},"phkr6xpy5us",["D",1762272000000],{"_13":732,"_15":733,"_60":734},"65f3299e49a461b4b9c72e02","What Is the Zero Trust Security Model?",{"_69":735,"_164":736,"_157":737,"_155":743,"_139":744,"_148":745,"_142":6,"_396":795},"what-is-the-zero-trust-security-model","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fad8f5c0e8ddf4a9f99564557daa048e0",[738],{"_160":739},{"_37":126,"_13":162,"_128":163,"_43":740},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":741,"_172":410},{"_15":260,"_69":287,"_72":742,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"August 31, 2021","October 28, 2025",[746,766],{"_151":747},{"_37":126,"_13":748,"_128":154,"_43":749},"66048bf75c4994feef17a08a",{"_13":748,"_15":750,"_19":19,"_11":751,"_17":314,"_60":752,"_172":765},"Rachel Bishop",1742719354803,{"_15":750,"_69":753,"_72":754,"_320":757,"_322":-5,"_323":758,"_383":759,"_325":760},"rachel-bishop",{"_62":755,"_74":756,"_146":6,"_144":6},"Rachel Bishop | Huntress","Read blog posts from Rachel Bishop on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fcda6ab72dddc4da0b2ab8cb32343b758","

Coffee Consumer. Cybersecurity Enthusiast. Former Content Strategist at Huntress.

‍

","https://www.linkedin.com/in/rachelbishop723/",[761,763],{"_328":762},{"_37":126,"_13":330,"_128":325},{"_328":764},{"_37":126,"_13":333,"_128":325},"85aepgw1t1",{"_151":767},{"_37":126,"_13":768,"_128":154,"_43":769},"7eadf16770164b6e8f7d3b13cc7c8c55",{"_11":770,"_13":768,"_15":771,"_17":314,"_19":19,"_20":772,"_34":774,"_60":775,"_45":790,"_47":791,"_49":792,"_50":51,"_54":393,"_56":393,"_58":793,"_172":794},1747774576925,"Lizzie Danielson",{"_22":63,"_25":60,"_26":773},{"_28":29,"_30":31,"_32":33},[],{"_371":776,"_15":771,"_379":777,"_383":778,"_386":779,"_325":780,"_322":783,"_69":784,"_381":427,"_72":785,"_320":788,"_323":789},"Lizzie","Danielson","https://www.linkedin.com/in/lizzie-danielson/","SEO Manager, Content",[781],{"_328":782},{"_37":126,"_13":330,"_128":325},"Lizzie Danielson Huntress ","lizzie-danielson",{"_74":786,"_62":787},"Read blog posts from Lizzie Danielson on the Huntress Blog. ","Lizzie Danielson | Huntress ","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fd18d166790984250b1b7e693c58662df","

Lizzie Danielson brings a sharp eye for strategy and a deep love for storytelling to her role at Huntress. She first discovered her passion for cybersecurity while working at a digital marketing agency that specialized in supporting MSPs and MSSPs. What started as a curiosity quickly became a calling, leading her to dive deeper into the industry, eventually landing at a leading MSSP, before returning to her roots in marketing.

At Huntress, Lizzie blends technical insight with creative execution to help make cybersecurity knowledge accessible for businesses of all sizes. She’s driven by the company’s mission to protect all businesses in an increasingly hostile cyber landscape—and energized by the brilliant minds she gets to collaborate with every day.

When she’s not crafting content, Lizzie enjoys bird watching, thrifting, baking sourdough, and exploring Florida with her fiancé and three beloved “barketing assistants.”

",{},1752685085567,1747775018230,[],"jrknona8e8h",["D",1761624000000],{"_13":797,"_15":798,"_60":799},"7c372c9753f44b7a858f43874ef1d7cb","Exploitation of Windows Server Update Services Remote Code Execution Vulnerability (CVE-2025-59287) ",{"_69":800,"_164":801,"_157":802,"_155":815,"_148":816,"_139":-5,"_396":931},"exploitation-of-windows-server-update-services-remote-code-execution-vulnerability","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F86b7b3417b154f40bf10bbb4d5ac05d6",[803],{"_160":804},{"_37":126,"_13":268,"_128":163,"_43":805},{"_13":268,"_15":269,"_19":19,"_11":806,"_17":285,"_60":807,"_172":814},1739997400367,{"_15":269,"_69":808,"_72":809,"_291":810,"_68":811,"_140":812,"_74":813},"response-to-incidents",{"_62":810,"_74":811},"Incident Responses Blog Posts | Huntress","Read more about Incident Responses in these Huntress blog posts. ","https://www.huntress.com/blog-categories/response-to-incidents","

Be the first to know about CVEs and threat advisories that we're seeing on the front lines. We'll break down how these threats or attacks work, do in-depth analysis, and provide mitigation guidance.

","zj6aanr8w3","October 24, 2025",[817,845,872,901,916],{"_151":818},{"_37":126,"_13":819,"_128":154,"_43":820},"66048bf3351a788121c616ae",{"_34":821,"_58":822,"_11":823,"_13":819,"_15":824,"_17":314,"_19":19,"_20":825,"_60":827,"_45":841,"_47":842,"_49":823,"_50":51,"_54":843,"_56":843,"_172":844},[],[],1742719368644,"Chad Hudson",{"_26":826,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},{"_386":643,"_15":824,"_322":-5,"_320":828,"_323":829,"_383":830,"_72":831,"_381":427,"_580":834,"_69":835,"_325":836},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F833407826677436f8a7753fbb9f0b3ea","

Turning childhood curiosity into cybersecurity expertise.

Chad Hudson's journey into the world of computers began at a young age, inspired by his father's passion for technology. \"I had always been around computers while growing up,\" Chad recalls. \"My dad was an avid hobbyist into computers and tech. Eventually, it rubbed off onto me and I started copying him as a child and got involved with computers.\"

At Huntress, Chad specializes in the Security Operations Center (SOC) and Hunt & Response. His role involves staying vigilant against cyber threats and responding swiftly to security incidents targeting small and medium-sized businesses. \"Working at Huntress gives me all the warm and fuzzies, knowing we're out here being the cyber 'superheroes' for the SMBs,\" he says. \"It's satisfying waking up each day knowing we're the ones stopping threat actors attempting to punish hardworking companies for a quick buck.\"

What's your favorite cybersecurity tip, Chad?

\"Think before you click. Working in a SOC and contributing to the hunts, a main method I see users falling for is social engineering attacks such as phishing. It's better to take your time when reviewing your emails, going to web pages, and downloading content. In the long run, a few extra seconds of caution can save a world of trouble!\"

Go ahead and give Chad a follow on X: @0xBurgers

‍

","https://www.linkedin.com/in/chadhudsoncybersec/",{"_62":832,"_144":79,"_146":79,"_74":833},"Chad Hudson | Huntress","Read blog posts from Chad Hudson on the Huntress Blog.","https://x.com/0xBurgers","chad-hudson",[837,839],{"_328":838},{"_37":126,"_13":330,"_128":325},{"_328":840},{"_37":126,"_13":333,"_128":325},{},1743718476064,"wAnY6pD8qneav3wmIkWFzKSZXNM2","ezsq4u9yvam",{"_151":846},{"_37":126,"_13":847,"_128":154,"_43":848},"3c9334d8481345a0ab0a6c9e1ce37f67",{"_11":849,"_13":847,"_15":850,"_17":314,"_19":19,"_20":851,"_34":853,"_60":854,"_45":867,"_47":868,"_49":869,"_50":51,"_54":393,"_56":393,"_58":870,"_172":871},1759242730979,"James Maclachlan",{"_26":852,"_22":63,"_25":60},{"_28":29,"_30":31,"_32":33},[],{"_381":427,"_69":855,"_386":643,"_72":856,"_15":850,"_379":859,"_371":860,"_325":861,"_687":864,"_320":865,"_323":866},"james-maclachlan",{"_74":857,"_62":858},"Read blog posts from James Maclachlan on the Huntress Blog. ","James Maclachlan | Huntress","Maclachlan","James ",[862],{"_328":863},{"_37":126,"_13":330,"_128":325},{},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F81a6bcfd3e324813a5b4a12c38b6d9d7","

James Maclachlan is a dedicated cybersecurity professional with a knack for uncovering threats and responding to incidents. His passion for cybersecurity was sparked at a young age after a malware infection while downloading Minecraft mods, and it grew into a career during his time at the University of Warwick, where he earned an MSc in Cybersecurity Engineering. James also holds certifications like eCTHPv2 and eCMAP, showcasing his expertise in threat hunting and malware analysis.

Before joining Huntress, James honed his skills in Security Operations at Mandiant and Google. At Huntress, he thrives on the mission of protecting businesses of all sizes from cyber threats, hunting APTs, and uncovering zero-days.

Outside of work, James enjoys web development, drumming, and playing ice hockey. He’s a strong advocate for password managers, unique passwords, and 2FA.

Explore his insights on his blog: blog.jaalma.io.

",{},1759842998849,1759242914864,[],"h77w5b2kqhi",{"_151":873},{"_37":126,"_13":874,"_128":154,"_43":875},"6619a8c7f5f67fea22937980",{"_11":876,"_13":874,"_15":877,"_17":314,"_19":19,"_20":878,"_34":880,"_60":881,"_45":897,"_47":898,"_49":876,"_50":51,"_54":843,"_56":589,"_58":899,"_172":900},1742719349377,"Jai Minton",{"_26":879,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_381":427,"_322":-5,"_386":882,"_383":883,"_69":884,"_72":885,"_580":888,"_15":877,"_323":889,"_325":890,"_320":895,"_585":896},"Manager, Hunt & Response - AUS","https://www.linkedin.com/in/jaiminton/","jai-minton",{"_144":6,"_74":886,"_146":6,"_62":887},"Read blog posts from Jai Minton, Principal Security Operations Analyst on the Huntress Blog.","Jai Minton - Principal Security Operations Analyst | Huntress","https://x.com/CyberRaiju/","

Jai Minton’s journey into cybersecurity is as unique as it is inspiring.

Jai's initial foray into cybersecurity began in high school when he \"borrowed\" internet from a neighbor, uncovering vulnerabilities in wireless networks. This curiosity led him to pursue information security in university, despite initial reluctance. A pivotal moment during his final year placement involved identifying and addressing security issues within an organization. This achievement quickly led to the creation of a new role specifically for Jai, marking the beginning of his professional career in the cybersecurity industry.

Describing himself as a \"Jack of all Trades, Master of None,\" Jai has built a versatile skill set that spans Threat Hunting, Security Operations, Malware Analysis, Detection Engineering, Digital Forensics, and Incident Response. While his focus has been primarily on defensive security operations, threat intelligence, and threat hunting, Jai's early career included penetration testing and vulnerability assessments.

“Huntress allows me to have a flexible remote working environment, whilst still being able to use my mind to solve any hurdles encountered. This is all with the knowledge that everything is directly contributing to the ongoing security of small to medium-sized businesses which need protection the most.”

Jai’s academic credentials are impressive: a Bachelor of Information Technology, a Diploma of Government, and certifications such as OSCP, and GIAC iOS and MacOS Examiner (GIME). He has also served as an Academic Advisor for Security Blue Team’s ‘Blue Team Level 2’ (BTL2) certification, with his research being cited in renowned industry courses like SANS FOR500 (Windows Forensic Analysis).

Jai has been recognized with several prestigious awards, including:

2023: SANS Holiday Hack Challenge - Best Overall Answer Grand Prize Winner
2022: SANS Holiday Hack Challenge - Best Technical Answer Prize Winner
2021: SANS Holiday Hack Challenge - Most Creative Prize Winner
SANS Counter Hack Challenges: Core Netwars Continuous 2 - Top 1% Globally
SANS Counter Hack Challenges: DFIR Netwars Continuous 2 - Top 3% Globally

Before joining Huntress, Jai worked for CrowdStrike, further honing his expertise in the cybersecurity field.

What’s your favorite cybersecurity tip, Jai?

First, use a password manager, don't save your passwords in your browser or reuse them. Secondly, block advertisements—malicious ads are a common source of downloading software from fake websites that cause initial infections on a system.”

Outside of his professional life, Jai enjoys research, gaming, and spending time with his loved ones.

You can learn more about Jai on his website jaiminton.com or follow him on Twitter/X and YouTube @CyberRaiju.

",[891,893],{"_328":892},{"_37":126,"_13":330,"_128":325},{"_328":894},{"_37":126,"_13":333,"_128":325},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fd158bbe5530045be8a6c7f1a4de7ed45","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F9538827d6c1b49ffb4e8f1e39e63fab3",{},1752677471534,[],"chvthskujx",{"_151":902},{"_37":126,"_13":560,"_128":154,"_43":903},{"_11":562,"_13":560,"_15":563,"_17":314,"_19":19,"_20":904,"_34":906,"_60":907,"_45":914,"_47":588,"_49":562,"_50":51,"_54":589,"_56":589,"_58":915,"_172":591},{"_26":905,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_320":568,"_386":569,"_323":570,"_69":571,"_15":563,"_383":572,"_325":908,"_578":579,"_381":427,"_580":581,"_72":913,"_322":-5,"_585":586},[909,911],{"_328":910},{"_37":126,"_13":330,"_128":325},{"_328":912},{"_37":126,"_13":333,"_128":325},{"_144":6,"_74":583,"_62":584,"_146":6},{},[],{"_151":917},{"_37":126,"_13":452,"_128":154,"_43":918},{"_11":454,"_13":452,"_15":455,"_17":314,"_19":19,"_20":919,"_34":921,"_60":922,"_45":929,"_47":479,"_49":480,"_50":51,"_54":481,"_56":57,"_58":930,"_172":483},{"_25":60,"_22":63,"_26":920},{"_28":29,"_30":31,"_32":33},[],{"_383":460,"_320":461,"_323":462,"_379":463,"_464":465,"_72":923,"_371":468,"_386":469,"_322":470,"_69":471,"_381":427,"_325":924,"_15":455},{"_62":455,"_74":467},[925,927],{"_328":926},{"_37":126,"_13":330,"_128":325},{"_328":928},{"_37":126,"_13":477,"_128":325},{},[],["D",1761278400000],{"_13":933,"_15":934,"_60":935},"8914925e4b244229a16208cce96b2838","Looking Through a Pinhole at a Qilin Ransomware Attack",{"_69":936,"_164":937,"_157":938,"_155":944,"_148":945,"_139":-5,"_396":1018},"looking-at-qilin-ransomware-attack","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F642541cb00fe4e90a07832fed51581a9",[939],{"_160":940},{"_37":126,"_13":271,"_128":163,"_43":941},{"_13":271,"_15":272,"_19":19,"_11":618,"_17":285,"_60":942,"_172":626},{"_15":272,"_69":620,"_72":943,"_291":622,"_68":623,"_140":624,"_74":625},{"_62":622,"_74":623},"October 22, 2025",[946,961,990],{"_151":947},{"_37":126,"_13":452,"_128":154,"_43":948},{"_11":454,"_13":452,"_15":455,"_17":314,"_19":19,"_20":949,"_34":951,"_60":952,"_45":959,"_47":479,"_49":480,"_50":51,"_54":481,"_56":57,"_58":960,"_172":483},{"_25":60,"_22":63,"_26":950},{"_28":29,"_30":31,"_32":33},[],{"_383":460,"_320":461,"_323":462,"_379":463,"_464":465,"_72":953,"_371":468,"_386":469,"_322":470,"_69":471,"_381":427,"_325":954,"_15":455},{"_62":455,"_74":467},[955,957],{"_328":956},{"_37":126,"_13":330,"_128":325},{"_328":958},{"_37":126,"_13":477,"_128":325},{},[],{"_151":962},{"_37":126,"_13":963,"_128":154,"_43":964},"e53a6e3ef1ec4c63bd424e409f0d0969",{"_11":965,"_13":963,"_15":966,"_17":314,"_19":19,"_34":967,"_60":968,"_45":982,"_47":983,"_49":984,"_50":51,"_54":393,"_56":985,"_58":986,"_20":987,"_172":989},1760633372721,"Ben Folland ",[],{"_72":969,"_386":972,"_322":973,"_15":966,"_464":465,"_379":974,"_371":975,"_585":976,"_687":977,"_381":427,"_69":978,"_325":979},{"_62":970,"_74":971},"Ben Folland | Huntress ","Read blog posts from Ben Folland on the Huntress Blog. ","Security Operations Analyst","Ben Folland Huntress ","Folland","Ben","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fb7a2f187b76441638e49a6b573c20fd1",{},"ben-folland",[980],{"_328":981},{"_37":126,"_13":330,"_128":325},{},1762273600691,1760633465178,"jUlbsxh3TzMKTX6guQoqpyiR6NT2",[],{"_25":60,"_22":63,"_26":988,"_680":79},{"_28":29,"_30":31,"_32":33},"pqzeyalmaib",{"_151":991},{"_37":126,"_13":992,"_128":154,"_43":993},"66032c1a34a761fda5e296f5",{"_11":994,"_13":992,"_15":995,"_17":314,"_19":19,"_20":996,"_34":998,"_60":999,"_45":1014,"_47":1015,"_49":994,"_50":51,"_54":843,"_56":589,"_58":1016,"_172":1017},1742719371916,"Harlan Carvey",{"_25":60,"_22":63,"_26":997},{"_28":29,"_30":31,"_32":33},[],{"_72":1000,"_322":-5,"_325":1003,"_323":1008,"_383":1009,"_381":427,"_15":995,"_320":1010,"_386":1011,"_69":1012,"_585":1013},{"_146":6,"_74":1001,"_144":6,"_62":1002},"Read blog posts from Harlan Carvey, Senior Threat Intelligence Analyst on the Huntress Blog.","Harlan Carvey - Senior Threat Intelligence Analyst | Huntress",[1004,1006],{"_328":1005},{"_37":126,"_13":330,"_128":325},{"_328":1007},{"_37":126,"_13":333,"_128":325},"

Hanging out where digital forensics meets incident response and threat intel.

“I was in grad school in 1994, and came across something interesting. The \"finger\" app was described as a 'security vulnerability'. I had no idea why this was the case, so I asked the senior sysadmin for the curriculum. She looked at me, smiled, and walked away without saying a word.” So began Harlan’s affinity for digging into head-scratching security questions.

Harlan is Staff Threat Intel Analyst, Adversary Tactics here at Huntress, poised at the intersection of digital forensics and incident response, threat hunting, and threat intel.

He leverages his extensive 20+ years of DFIR (Digital Forensics and Incident Response) experience to focus on threat intelligence, which is essentially unraveling how threat actors are looking to gain entry on endpoints and finding ways to detect it sooner in the attack cycle. Prior to Huntress, Harlan ran the internal SOC at EY. \t

But he doesn’t keep it all to himself, Harlan is an accomplished public speaker, writer, innovative researcher, and analyst. As a published author (besides the below blog posts!), Harlan has published 9 books, including the first book of its kind offering an analysis of the Windows Registry.

When he’s not at work, Harlan enjoys programming in Perl, reading, writing, and working around the farm.

‍

What's your favorite cybersecurity tip, Harlan?
“Do the basics well, beginning with an asset inventory and attack surface reduction.”

‍

","https://www.linkedin.com/in/harlan-carvey-86a8694b/","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ffa69b31eae1e4264b7c12bcfa5e0f9a5","Staff Threat Intelligence Analyst","harlan-carvey","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F110b52ecaef146ec9ea537d88a5ab596",{},1752677471801,[],"p67voz9jwbo",["D",1761109200000],{"_13":1020,"_15":1021,"_60":1022},"e16dadca6cd84a83b73ab14d9ba47031","I Wish I Was a Little Bit Taller: Dealing with Imperfection in Intrusions ",{"_69":1023,"_164":1024,"_157":1025,"_155":1031,"_148":1032,"_139":-5,"_396":1074},"imperfect-telemetry-techniques-effective-incident-response","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4f5bb63967d7485d8f4d0b3691aa065d",[1026],{"_160":1027},{"_37":126,"_13":162,"_128":163,"_43":1028},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":1029,"_172":410},{"_15":260,"_69":287,"_72":1030,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"October 21, 2025",[1033],{"_151":1034},{"_37":126,"_13":1035,"_128":154,"_43":1036},"66fc0862faf913278b305e9b",{"_11":1037,"_13":1035,"_15":1038,"_17":314,"_19":19,"_20":1039,"_34":1041,"_60":1042,"_45":1070,"_47":1071,"_49":1037,"_50":51,"_54":55,"_56":985,"_58":1072,"_172":1073},1742719343202,"Anton Ovrutsky",{"_22":63,"_25":60,"_26":1040},{"_28":29,"_30":31,"_32":33},[],{"_580":1043,"_69":1044,"_323":1045,"_383":1046,"_1047":1048,"_386":1054,"_381":427,"_322":-5,"_325":1055,"_15":1038,"_72":1062,"_1065":1066,"_320":1067,"_371":1068,"_379":1069},"https://x.com/@Antonlovesdnb","anton-ovrutsky","

From guarding doors to guarding data.

Anton Ovrutsky transitioned into cybersecurity from a Service Desk role, initially gaining experience through governance, risk, and compliance work. At Huntress, he serves as a Principal Threat Hunting and Response Analyst, with an emphasis on tactical response. \"I specialize in looking at the incidents that the SOC escalates that require more in-depth review,\" Anton explains. To put it another way, his expertise ensures that complex security incidents are thoroughly investigated and addressed.

Anton holds several prestigious certifications, including CISSP, OSCP, OSCE, CCSP, and KCNA. Prior to joining Huntress, he gained valuable experience in the SIEM vendor SaaS space.

He holds several prestigious certifications—CISSP, OSCP, OSCE, CCSP, and KCNA. Before joining Huntress, Anton worked in the SIEM vendor SaaS space, where he honed his skills in security information and event management.

What's your favorite cybersecurity tip, Anton?

\"When possible, do not assume something works a certain way unless you've tried it yourself.\"

Outside of work, Anton enjoys watching his favorite shows on his favorite couch, spending time with his wife and cats, and weightlifting. Before embarking on his cybersecurity career, he earned a master's degree in European History and even worked as a night club bouncer. Now, that’s a well-rounded resume.

Follow Anton on X: @Antonlovesdnb

","https://www.linkedin.com/in/antonovrutsky/","specialties",[1049,1052],{"_1050":1051},"specialty","initial access",{"_1050":1053},"lateral movement","Principal Threat Hunting and Response Analyst",[1056,1058,1060],{"_328":1057},{"_37":126,"_13":330,"_128":325},{"_328":1059},{"_37":126,"_13":333,"_128":325},{"_328":1061},{"_37":126,"_13":477,"_128":325},{"_74":1063,"_144":6,"_62":1064,"_146":6},"Read blog posts from Anton Ovrutsky on the Huntress Blog.","Anton Ovrutsky | Huntress","bioDetailShort","Anton Ovrutsky transitioned into cybersecurity from a Service Desk role, initially gaining experience through governance, risk, and compliance work.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff941baab28f74a829eb9f8619d0e4a0f","Anton","Ovrutsky",{},1754419091628,[],"wema81c22x",["D",1761022800000],{"_13":1076,"_15":1077,"_60":1078},"9969bb7ba36a4a2ba84dcb9c6cd16dbd","Dispelling Ransomware Deployment Myths",{"_69":1079,"_164":1080,"_157":1081,"_155":1087,"_148":1088,"_139":-5,"_396":1119},"dispelling-ransomware-deployment-myths","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F1a0b787ebf684620a602320f6e66cd17",[1082],{"_160":1083},{"_37":126,"_13":162,"_128":163,"_43":1084},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":1085,"_172":410},{"_15":260,"_69":287,"_72":1086,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"October 16, 2025",[1089,1104],{"_151":1090},{"_37":126,"_13":992,"_128":154,"_43":1091},{"_11":994,"_13":992,"_15":995,"_17":314,"_19":19,"_20":1092,"_34":1094,"_60":1095,"_45":1102,"_47":1015,"_49":994,"_50":51,"_54":843,"_56":589,"_58":1103,"_172":1017},{"_25":60,"_22":63,"_26":1093},{"_28":29,"_30":31,"_32":33},[],{"_72":1096,"_322":-5,"_325":1097,"_323":1008,"_383":1009,"_381":427,"_15":995,"_320":1010,"_386":1011,"_69":1012,"_585":1013},{"_146":6,"_74":1001,"_144":6,"_62":1002},[1098,1100],{"_328":1099},{"_37":126,"_13":330,"_128":325},{"_328":1101},{"_37":126,"_13":333,"_128":325},{},[],{"_151":1105},{"_37":126,"_13":452,"_128":154,"_43":1106},{"_11":454,"_13":452,"_15":455,"_17":314,"_19":19,"_20":1107,"_34":1109,"_60":1110,"_45":1117,"_47":479,"_49":480,"_50":51,"_54":481,"_56":57,"_58":1118,"_172":483},{"_25":60,"_22":63,"_26":1108},{"_28":29,"_30":31,"_32":33},[],{"_383":460,"_320":461,"_323":462,"_379":463,"_464":465,"_72":1111,"_371":468,"_386":469,"_322":470,"_69":471,"_381":427,"_325":1112,"_15":455},{"_62":455,"_74":467},[1113,1115],{"_328":1114},{"_37":126,"_13":330,"_128":325},{"_328":1116},{"_37":126,"_13":477,"_128":325},{},[],["D",1760590800000],{"_13":1121,"_15":1122,"_60":1123},"2ff8d52334b44313aef6a467849f818d","CMMC Final Rule: What DoD Subs Need to Know",{"_69":1124,"_164":1125,"_157":1126,"_155":1132,"_148":1133,"_139":-5,"_396":1161},"cmmc-final-rule-guide-for-dod-subcontractors","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F228215002174478d9d63c89ac4edbd41",[1127],{"_160":1128},{"_37":126,"_13":162,"_128":163,"_43":1129},{"_13":162,"_15":260,"_19":19,"_11":284,"_17":285,"_60":1130,"_172":410},{"_15":260,"_69":287,"_72":1131,"_291":289,"_68":290,"_140":292,"_74":293},{"_62":289,"_74":290},"October 15, 2025",[1134],{"_151":1135},{"_37":126,"_13":1136,"_128":154,"_43":1137},"66048bf38d279e9104a87754",{"_34":1138,"_58":1139,"_11":1140,"_13":1136,"_15":1141,"_17":314,"_19":19,"_20":1142,"_60":1144,"_45":1158,"_47":1159,"_49":1140,"_50":51,"_54":843,"_56":843,"_172":1160},[],[],1742719367309,"Chris Henderson",{"_26":1143,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},{"_383":1145,"_69":1146,"_381":427,"_320":1147,"_322":-5,"_386":1148,"_72":1149,"_325":1152,"_15":1141,"_323":1157},"https://www.linkedin.com/in/chenderson-cissp/","chris-henderson","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F949468cfcdfb4874b0e4fe51534cec14","Chief Information Security Officer",{"_144":6,"_146":6,"_62":1150,"_74":1151},"Chris Henderson | Huntress","Read blog posts from Chris Henderson on the Huntress Blog.",[1153,1155],{"_328":1154},{"_37":126,"_13":330,"_128":325},{"_328":1156},{"_37":126,"_13":333,"_128":325},"

‍An information security leader dedicated to safeguarding small businesses and enabling communities.

Chris Henderson oversees internal security at Huntress, ensuring the company stays ahead of emerging cyber threats. He also leads the threat intelligence group Adversary Tactics and the Product Security Researchers team, translating threat intelligence into product capabilities and features.

His journey into cybersecurity began unexpectedly. \"(It started with) the initial Diablo game. I was frustrated by being so terrible at it, but I learned how to manipulate the local save files to give myself a boost. It completely changed the way I thought about computers and applications,\" Chris recalls.

Chris holds degrees in both Psychology and Computer Science and is a Certified Information Systems Security Professional (CISSP). Before transitioning into IT and security, he worked as a social worker. \"While it may seem like a big leap, a lot of the interpersonal skills from social work made security change management significantly easier to navigate,\" he notes.

Prior to joining Huntress, Chris spent his entire technical career in the Managed Service Provider (MSP) space, notably at Datto. His expertise includes building scalable, agile, and engaged teams driven by data, specializing in compliance, business continuity, security operations, supply chain risk, and sales enablement.

What's your favorite cybersecurity tip, Chris?

\"Always assume malicious intent. The current state of the world has made it easier than ever to launch a very convincing social engineering attack. Due to this, you should assume every inbound form of communication is malicious until you know for certain otherwise.\"

Outside of work, Chris enjoys photography, board games, and electric skateboarding. He’s also a named inventor on the patent \"Systems and methods for detecting ransomware infection\", which seems relevant.

Check out his LinkedIn page to learn more.

‍

",{},1743718417973,"r5gggreduq9",["D",1760504400000],{"_13":1163,"_15":1164,"_60":1165},"e5ef750bc64a40fc9d5f8ee503dd70be","Active Exploitation of Gladinet CentreStack and Triofox Local File Inclusion Flaw (CVE-2025-11371)",{"_69":1166,"_164":1167,"_157":1168,"_155":1174,"_139":1132,"_148":1175,"_396":1248},"gladinet-centrestack-triofox-local-file-inclusion-flaw","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fed6898a26597492b96f930c32f27a7a1",[1169],{"_160":1170},{"_37":126,"_13":268,"_128":163,"_43":1171},{"_13":268,"_15":269,"_19":19,"_11":806,"_17":285,"_60":1172,"_172":814},{"_15":269,"_69":808,"_72":1173,"_291":810,"_68":811,"_140":812,"_74":813},{"_62":810,"_74":811},"October 9, 2025",[1176,1204,1218,1233],{"_151":1177},{"_37":126,"_13":1178,"_128":154,"_43":1179},"d329c0b9db1d4b799b35e935a7c85e20",{"_11":1180,"_13":1178,"_15":1181,"_17":314,"_19":19,"_20":1182,"_34":1184,"_60":1185,"_45":1199,"_47":1200,"_49":1201,"_50":51,"_54":393,"_56":393,"_58":1202,"_172":1203},1759242340419,"Bryan Masters",{"_26":1183,"_22":63,"_25":60},{"_28":29,"_30":31,"_32":33},[],{"_15":1181,"_687":1186,"_320":1187,"_386":643,"_379":1188,"_72":1189,"_325":1192,"_381":427,"_371":1195,"_69":1196,"_383":1197,"_323":1198},{},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe0a07b0656be4db08894dd61a5058950","Masters",{"_62":1190,"_74":1191},"Bryan Masters | Huntress","Read blog posts from Bryan Masters on the Huntress Blog. ",[1193],{"_328":1194},{"_37":126,"_13":330,"_128":325},"Bryan","bryan-masters","https://www.linkedin.com/in/bryan-masters-9a99b11a2/","

Bryan Masters is a seasoned cybersecurity professional with over 18 years of experience, including 13 years as a Cyber Security Specialist in the Australian Army. His journey into cybersecurity began during his military service, when he transitioned from Network Engineer to Cyber Security Specialist. This was a pivotal moment that ignited his passion for the field.

As a Senior Hunt & Response Analyst at Huntress, Bryan is tasked with collaborating with the SOC and Detection Engineering teams to identify and neutralize emerging threats. He has previously obtained several industry certifications, including GISO, GCIA, and GEVA, underscoring his technical expertise.

Bryan is driven by Huntress’ mission to make cybersecurity accessible to all, not just large enterprises. Outside of work, he enjoys rock climbing and mountain biking, finding both to be perfect outlets for staying active and unplugging from screens.

",{},1759843185708,1759242485253,[],"1aqv3feffmz",{"_151":1205},{"_37":126,"_13":847,"_128":154,"_43":1206},{"_11":849,"_13":847,"_15":850,"_17":314,"_19":19,"_20":1207,"_34":1209,"_60":1210,"_45":1216,"_47":868,"_49":869,"_50":51,"_54":393,"_56":393,"_58":1217,"_172":871},{"_26":1208,"_22":63,"_25":60},{"_28":29,"_30":31,"_32":33},[],{"_381":427,"_69":855,"_386":643,"_72":1211,"_15":850,"_379":859,"_371":860,"_325":1212,"_687":1215,"_320":865,"_323":866},{"_74":857,"_62":858},[1213],{"_328":1214},{"_37":126,"_13":330,"_128":325},{},{},[],{"_151":1219},{"_37":126,"_13":874,"_128":154,"_43":1220},{"_11":876,"_13":874,"_15":877,"_17":314,"_19":19,"_20":1221,"_34":1223,"_60":1224,"_45":1231,"_47":898,"_49":876,"_50":51,"_54":843,"_56":589,"_58":1232,"_172":900},{"_26":1222,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_381":427,"_322":-5,"_386":882,"_383":883,"_69":884,"_72":1225,"_580":888,"_15":877,"_323":889,"_325":1226,"_320":895,"_585":896},{"_144":6,"_74":886,"_146":6,"_62":887},[1227,1229],{"_328":1228},{"_37":126,"_13":330,"_128":325},{"_328":1230},{"_37":126,"_13":333,"_128":325},{},[],{"_151":1234},{"_37":126,"_13":560,"_128":154,"_43":1235},{"_11":562,"_13":560,"_15":563,"_17":314,"_19":19,"_20":1236,"_34":1238,"_60":1239,"_45":1246,"_47":588,"_49":562,"_50":51,"_54":589,"_56":589,"_58":1247,"_172":591},{"_26":1237,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_320":568,"_386":569,"_323":570,"_69":571,"_15":563,"_383":572,"_325":1240,"_578":579,"_381":427,"_580":581,"_72":1245,"_322":-5,"_585":586},[1241,1243],{"_328":1242},{"_37":126,"_13":330,"_128":325},{"_328":1244},{"_37":126,"_13":333,"_128":325},{"_144":6,"_74":583,"_62":584,"_146":6},{},[],["D",1760500800000],"totalPages",35,"pageNumber","event","loader","common",{"_1256":1257,"_1787":1788,"_1853":1854,"_1916":1917},"headerContent",[1258,1342,1455,1526,1604,1621],{"_58":1259,"_45":1260,"_56":55,"_60":1261,"_47":1333,"_15":1267,"_11":1334,"_19":19,"_54":55,"_49":1335,"_20":1336,"_50":51,"_17":1338,"_34":1339,"_13":1340,"_172":1341},[],{},{"_1262":1263,"_1264":1265,"_1266":1267,"_1268":1269},"type","Menu","linkProperties",{},"menuText","Platform","columns",[1270,1304],{"_1271":1272,"_1276":105,"_1262":1277,"_1278":79,"_62":1279,"_1280":1281},"footerLink",{"_77":1273,"_1274":1275},"/platform","text","Platform Overview","columnSpan","Link List","showTitle","Huntress Managed Security Platform","links",[1282,1289,1294,1299],{"_77":1283,"_1262":1284,"_1285":1286,"_121":1287,"_62":1288},"/platform/managed-edr","Text Link","icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Feb16a0fc49194ef3a61c385bd0d0f312","

Get full endpoint visibility, detection, and response.

","Managed EDR",{"_121":1290,"_1285":1291,"_1262":1284,"_62":1292,"_77":1293},"

Empower your teams with science-backed security awareness training.

","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fcd0acdb221c84200a837d97a6bac46a7","Managed Security Awareness Training","/platform/security-awareness-training",{"_1262":1284,"_121":1295,"_1285":1296,"_77":1297,"_62":1298},"

Protect your Microsoft 365 identities and email environments.

","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ffd3a938d7dfc41bdac34c3f46a36afb2","/platform/managed-itdr","Managed ITDR",{"_62":1300,"_1285":1301,"_77":1302,"_121":1303,"_1262":1284},"Managed SIEM","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F5638ee75bf42433c81332c153db5cb15","/platform/siem","

Managed threat response and robust compliance support at a predictable price.

",{"_1278":6,"_1262":1305,"_1276":51,"_142":79,"_1271":1306,"_62":1307,"_1308":1309},"Card",{},"Learn More Card","cardContentReference",{"_37":126,"_13":1310,"_128":1311,"_43":1312},"be5723c7f6674c6db1ebfc79503cb723","custom-cards",{"_11":1313,"_60":1314,"_34":1324,"_15":1316,"_50":51,"_45":1325,"_47":1326,"_54":55,"_58":1327,"_17":1328,"_49":1329,"_56":55,"_13":1310,"_19":19,"_20":1330,"_172":1332},1738695869997,{"_121":1315,"_15":1316,"_1317":1318,"_1319":1320,"_1321":1320,"_1322":1318,"_164":1323},"Try Huntress for free and deploy in minutes to start fighting threats.","Learn More","linkUrl","/demo","linkLabelText","Request a Demo","ctaText","ctaUrl","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4dcf43805cea496b92a4b04334297b54",[],{},1749580539246,[],"6debca3e2db24468b466376fc09f0c11",1738695944669,{"_26":1331,"_22":63,"_25":60},{"_28":29,"_30":31,"_32":33},"z300bb4ima",1749740747998,1749525643074,1749565841689,{"_25":60,"_26":1337,"_22":63},{"_30":31,"_28":29,"_32":33},"a8d3d337534a4f77aa8de03d557b7d7c",[],"1644f670abc3422fb4ae58c911ab52e0","gblw6fbey9d",{"_11":1343,"_13":1344,"_15":1345,"_17":1338,"_19":19,"_20":1346,"_34":1348,"_60":1349,"_45":1451,"_47":1452,"_49":1453,"_50":51,"_54":55,"_56":57,"_58":1454,"_172":1341},1749530546748,"5233b983391e46bea1a73aa4e64e3e1f","Solutions",{"_26":1347,"_22":63,"_25":60},{"_28":29,"_30":31,"_32":33},[],{"_1264":1350,"_1268":1351,"_1266":1345,"_1262":1263},{},[1352,1368,1392],{"_1278":79,"_1271":1353,"_1262":1277,"_1280":1354,"_1276":51,"_62":1367},{},[1355,1359,1363],{"_1262":1284,"_77":1356,"_1285":1357,"_62":1358},"/solutions/topics/phishing","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fd8af97b52a364281ae4ae771eac29f60","Phishing",{"_1262":1284,"_77":1360,"_1285":1361,"_62":1362},"/solutions/topics/cybersecurity-compliance","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F5437345f68ab4fecb25e1bf64d596f05","Compliance",{"_1285":1364,"_1262":1284,"_77":1365,"_62":1366},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe0006e0247a84d538abfdb56270b1971","/solutions/topics/business-email-compromise","Business Email Compromise","Solutions by Topic",{"_1280":1369,"_1278":79,"_62":1390,"_1262":1277,"_1276":51,"_1271":1391},[1370,1374,1378,1382,1386],{"_1285":1371,"_1262":1284,"_77":1372,"_62":1373},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4951efeb175d46a28d43a56e44f1aaa6","/industries/education","Education",{"_62":1375,"_77":1376,"_1285":1377,"_1262":1284},"Finance","/industries/financial-services","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F2c6e56c396984defa968946c3305fd5d",{"_77":1379,"_62":1380,"_1285":1381,"_1262":1284},"/industries/healthcare","Healthcare","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fad40fb4e0e8f4fc3a283928e18d2cb07",{"_1285":1383,"_77":1384,"_62":1385,"_1262":1284},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fa1a16399f6f94c3da8e42ddbe735c1c1","/industries/manufacturing","Manufacturing",{"_77":1387,"_1262":1284,"_62":1388,"_1285":1389},"/industries/state-and-local-government","State & Local Government","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fdafe6a53f78a407c80691541d7e292b9","Solutions by Industry",{},{"_1276":51,"_62":1393,"_142":79,"_1262":1305,"_1394":1395,"_1278":79,"_1271":1397,"_1308":1399},"Featured Resource","cardContentOverride",{"_121":1396},"

Packed with the information, tools, and guidance you need to keep your organization running smoothly and, most importantly, your patients safe.

",{"_1274":1398,"_77":63},"Get the Kit",{"_37":126,"_13":1400,"_128":1401,"_43":1402},"66c49e7c03769aca3efd1adf","resources",{"_13":1400,"_15":1403,"_19":19,"_11":1404,"_17":1405,"_60":1406,"_172":1450},"Healthcare Cybersecurity Success Kit",1742716627143,"5c10263d01de417681f67c6df9d9a9d4",{"_15":1403,"_69":1407,"_155":1408,"_139":1409,"_72":1410,"_140":1413,"_142":6,"_1414":79,"_164":1415,"_1416":1417,"_1418":1417,"_1419":1420,"_1438":1439,"_1322":1448,"_1321":1449},"healthcare-cybersecurity-success-kit","2024-08-21T00:00:00.000Z","2024-08-22T14:36:33.220Z",{"_62":1411,"_74":1412,"_146":6,"_144":6},"Healthcare Cybersecurity Success Kit | Huntress","This Healthcare Cybersecurity Success Kit is packed with the information, tools, and guidance you need to keep your organization running smoothly and, most importantly, your patients safe.","https://www.huntress.com/resources/healthcare-cybersecurity-success-kit","gated","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F25165b11288e4ab8ab0dc72832f4eb5e","preGateContent","

Hackers are hitting healthcare hard. From large hospital networks to small rural clinics, nothing’s off-limits anymore.

But you don't have to take it. This Healthcare Cybersecurity Success Kit is packed with the information, tools, and guidance you need to keep your organization running smoothly and, most importantly, your patients safe.

","postGateContent","tags",[1421,1430],{"_1422":1423},"tag",{"_37":126,"_13":1424,"_128":1419,"_43":1425},"6619a1966fc1cc2a81065887",{"_13":1424,"_15":1380,"_19":19,"_11":1426,"_17":1427,"_60":1428,"_172":1429},1741825542581,"06a1fff4f2d64eed986229acc010c74f",{"_15":1380},"ri01rvbz3m8",{"_1422":1431},{"_37":126,"_13":1432,"_128":1419,"_43":1433},"65f3299e49a461b4b9c72e83",{"_13":1432,"_15":1434,"_19":19,"_11":1435,"_17":1427,"_60":1436,"_172":1437},"Mastering Cybersecurity",1741825551705,{"_15":1434},"vayv7klqlbk","assetType",{"_37":126,"_13":1440,"_128":1441,"_43":1442},"65f3299e49a461b4b9c72e40","asset-types",{"_13":1440,"_15":1443,"_19":19,"_11":1444,"_17":1445,"_60":1446,"_172":1447},"Success Kit",1741790296798,"50c69b616da14a22b2d7092dd07fd641",{"_15":1443},"ajnerzclqkw","https://www.huntress.com/industries/healthcare/healthcare-resource-kit","Get the Healthcare Cybersecurity Success Kit","ugqy1kkk9br",{},1753628029636,1749565841905,[],{"_11":1456,"_13":1457,"_15":1458,"_17":1338,"_19":19,"_20":1459,"_34":1461,"_60":1462,"_45":1522,"_47":1523,"_49":1524,"_50":51,"_54":55,"_56":843,"_58":1525,"_172":1341},1749560149759,"94db9c6a65e047acb4ac7d4d2ea0da30","Why Huntress",{"_26":1460,"_680":6,"_25":60,"_22":63},{"_32":33,"_30":31,"_28":29},[],{"_1268":1463,"_1264":1521,"_1266":1458,"_1262":1263},[1464,1481,1494],{"_1276":51,"_1271":1465,"_1280":1466,"_1278":79,"_62":1480,"_1262":1277},{},[1467,1471,1476],{"_1285":1468,"_62":1469,"_1262":1284,"_77":1470},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F11f54e8f5fb54aadbf4c71effaab65a5","Managed Service Providers","/why-huntress/managed-service-providers",{"_464":1472,"_1285":1473,"_62":1474,"_1262":1284,"_77":1475},"Platform Icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff0209e5a35e34a25a31075aca24dec96","Value Added Resellers","/why-huntress/value-added-resellers",{"_1285":1477,"_62":1478,"_1262":1284,"_77":1479},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff257bebdca1c45cab6259f8436ca7221","IT & Security Teams","/why-huntress/it-security-teams","Who We Serve",{"_1276":51,"_1271":1482,"_1280":1483,"_1278":79,"_62":1493,"_1262":1277},{},[1484,1489],{"_464":1485,"_1285":1486,"_62":1487,"_1262":1284,"_77":1488},"Issue Detected - Alert Icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4cc0a301d59343f08fa3fd23661a7726","Huntress SOC","/why-huntress/24-7-soc",{"_1285":1490,"_62":1491,"_1262":1284,"_77":1492},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fff7b259c7c5c408f9747e8a28989015b","Case Studies","/why-huntress/case-studies","The Huntress Difference",{"_1276":51,"_142":79,"_1271":1495,"_1280":1498,"_1278":79,"_62":1520,"_1262":1277},{"_1274":1496,"_77":1497},"Compare All","/comparison",[1499,1502,1505,1508,1511,1514,1517],{"_62":1500,"_1262":1284,"_77":1501},"Bitdefender","/comparison/huntress-vs-bitdefender",{"_62":1503,"_1262":1284,"_77":1504},"Blackpoint","/comparison/huntress-vs-blackpoint",{"_62":1506,"_1262":1284,"_77":1507},"CrowdStrike","/comparison/huntress-vs-crowdstrike",{"_62":1509,"_1262":1284,"_77":1510},"Datto","/comparison/huntress-vs-datto",{"_62":1512,"_1262":1284,"_77":1513},"SentinelOne","/comparison/huntress-vs-sentinelone",{"_62":1515,"_1262":1284,"_77":1516},"Sophos","/comparison/huntress-vs-sophos",{"_62":1518,"_1262":1284,"_77":1519},"Webroot","/comparison/huntress-vs-webroot","Compare Huntress",{},{},1762463920798,1749565841954,[],{"_54":55,"_60":1527,"_13":1595,"_47":1596,"_49":1597,"_20":1598,"_56":55,"_15":1528,"_45":1600,"_17":1338,"_58":1601,"_19":19,"_34":1602,"_50":51,"_11":1603,"_172":1341},{"_1262":1263,"_1266":1528,"_1264":1529,"_1268":1530},"Resources",{},[1531,1555,1577],{"_1278":79,"_62":1532,"_1276":51,"_1280":1533,"_1271":1552,"_1262":1277},"Resource Center",[1534,1537,1540,1543,1546,1549],{"_1262":1284,"_77":1535,"_62":1536},"/resources?assetTypes=Datasheet","Datasheets",{"_62":1538,"_77":1539,"_1262":1284},"Ebooks","/resources?assetTypes=eBook",{"_62":1541,"_1262":1284,"_77":1542},"Reports","/resources?assetTypes=Report",{"_77":1544,"_1262":1284,"_62":1545},"/resources?assetTypes=On-Demand+Webinar","On-Demand Webinars",{"_77":1547,"_62":1548,"_1262":1284},"/resources?assetTypes=Whitepaper","Whitepapers",{"_77":1550,"_62":1551,"_1262":1284},"/resources?assetTypes=Video","Videos",{"_1274":1553,"_77":1554},"View All Resources","/resources",{"_1280":1556,"_1271":1575,"_1276":51,"_1278":6,"_62":1576,"_1262":1277},[1557,1559,1563,1567,1571],{"_1285":1558,"_1262":1284,"_62":16,"_77":44},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F7f4ca3bd558f425da4f12b81befbb279",{"_77":1560,"_1262":1284,"_1285":1561,"_62":1562},"/upcoming-events","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F6aa1f0e921a844ed9975b8c477720a6c","Upcoming Events",{"_62":1564,"_77":1565,"_1262":1284,"_1285":1566},"Support Documentation","https://support.huntress.io/hc/en-us","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fac02933fbb964cdf9e6c8b3b2280fa5d",{"_62":1568,"_1262":1284,"_1285":1569,"_77":1570},"Integrations","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F75378b21898340b6b863c3b68ae0a980","/integrations",{"_62":1572,"_77":1573,"_1285":1574,"_1262":1284},"Huntress Hub","https://hub.huntress.com/#/page/login","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fabe11db97e084bfeb9d370076781caea",{},"Other Resources",{"_62":1578,"_142":79,"_1262":1277,"_1280":1579,"_1278":79,"_1271":1594,"_1276":51},"Produced by Huntress",[1580,1585,1590],{"_204":1581,"_77":1582,"_1262":1583,"_62":1584},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fea18a565ed0e4bdda1f6881a955de34c","/tradecraft-tuesday","Image Link","Tradecraft Tuesday",{"_62":1586,"_1262":1583,"_77":1587,"_464":1588,"_204":1589},"Fireside Chat","/firesidechat","Fireside Chat Community Series","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F98c34785dc62414381fe4d25b1d355a9",{"_204":1591,"_62":1592,"_1262":1583,"_77":1593},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F5f3ffde6942c41b6885da8bc727a4cc5","Product Lab Channel","/product-lab-channel",{},"e21c3f198af24be5b52f72480500ff2d",1749676549589,1749565842009,{"_22":63,"_26":1599,"_25":60},{"_28":29,"_30":31,"_32":33},{},[],[],1749560786283,{"_11":1605,"_13":1606,"_15":1607,"_17":1338,"_19":19,"_20":1608,"_34":1610,"_60":1611,"_45":1617,"_47":1618,"_49":1619,"_50":51,"_54":55,"_56":55,"_58":1620,"_172":1341},1749561737294,"84190317c5f14f32ae91ba95a125371a","Pricing",{"_22":63,"_25":60,"_26":1609},{"_28":29,"_30":31,"_32":33},[],{"_1264":1612,"_1262":1616,"_1266":1607,"_1317":1613},{"_77":1613,"_1274":1607,"_1614":1615},"/pricing","target","_self","Link",{},1749579606414,1749565842037,[],{"_11":1622,"_13":1623,"_15":1624,"_17":1338,"_19":19,"_20":1625,"_34":1627,"_60":1628,"_45":1783,"_47":1784,"_49":1785,"_50":51,"_54":55,"_56":843,"_58":1786,"_172":1341},1749561775412,"2dc5eb1bcc024fcca43b7644cd21d4a1","About",{"_26":1626,"_25":60,"_22":63},{"_32":33,"_30":31,"_28":29},[],{"_1268":1629,"_1264":1782,"_1266":1624,"_1262":1263},[1630,1652,1667],{"_1276":51,"_1271":1631,"_1280":1632,"_1278":79,"_62":1651,"_1262":1277},{},[1633,1637,1642,1646],{"_1285":1634,"_62":1635,"_1262":1284,"_77":1636},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F38494b4ddb7a45a78ca20d43a03176bf","Our Story","/company/our-company",{"_464":1638,"_1285":1639,"_62":1640,"_1262":1284,"_77":1641},"Leadership Icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F33845c53ebd4472b9806d7a76b742616","Leadership","/company/leadership",{"_1285":1643,"_62":1644,"_1262":1284,"_77":1645},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F3a5e883de76c4f5686d64a1dc0dbe7b6","Latest News","/company/press",{"_464":1647,"_1285":1648,"_62":1649,"_1262":1284,"_77":1650},"Awards Icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F107b70abda5841439fca3a13a02929cf","Awards","/awards-and-accolades","About Huntress",{"_1276":51,"_1271":1653,"_1280":1654,"_62":1658,"_1262":1277},{},[1655,1660,1662],{"_464":1656,"_1285":1657,"_62":1658,"_1262":1284,"_77":1659},"Verify Icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F80b5a5a31d2245e49c4038e433792c22","Careers","/company/careers",{"_1285":1661,"_62":1562,"_1262":1284,"_77":1560},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F1490131472ce4b94a57df268649354a0",{"_464":1663,"_1285":1664,"_62":1665,"_1262":1284,"_77":1666},"SAT Content Icon","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F3324b3cde0b84f3b8749e3f6577c6540","Contact Us","/contact-us",{"_1394":1668,"_1308":1673,"_1276":51,"_142":79,"_1271":1779,"_1278":79,"_62":1781,"_1262":1305},{"_464":1669,"_1614":1670,"_164":1671,"_77":1672},"Key Methods Logo","_blank","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F92852707f65d412faf9ede9ade8030f1","https://cdn.builder.io/o/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F659979229f5449f28c49a65895b9d2ef?alt=media&token=e87850ca-2ec6-4625-a6d9-b2e8a487f1ad&apiKey=3eb6f92aedf74f109c7b4b0897ec39a8",{"_37":126,"_13":1674,"_128":1675,"_43":1676},"2d71ea3f63c447d7a361e21502a74e15","success-stories",{"_11":1677,"_13":1674,"_15":1678,"_17":1679,"_19":19,"_34":1680,"_45":1681,"_49":1682,"_50":51,"_54":843,"_56":843,"_58":1683,"_20":1684,"_47":1686,"_60":1687,"_172":1778},1743800825454,"Key Methods","84071192fd6043e68c9d5963be3e722b",[],{},1743803252848,[],{"_26":1685,"_25":60,"_22":63,"_680":6},{"_28":29,"_30":31,"_32":33},1762464285820,{"_464":1669,"_1688":1689,"_1690":1691,"_1716":1672,"_1717":1718,"_1719":1720,"_69":1758,"_1759":79,"_1760":1761,"_1762":1763,"_1764":1765,"_121":1766,"_72":1767,"_15":1678,"_1770":79,"_164":1771,"_381":1678,"_1772":1773,"_1750":1774,"_1775":1776,"_140":1777},"companyLocation","Wenatchee, WA","mainContent",{"_1692":1693},"section",[1694,1698,1700,1702,1704,1707,1709,1712,1714],{"_1695":1696,"_1697":63},"columnOne","

Prologue | Key Methods’ history with Huntress

Key Methods first tried Huntress in 2022. They rolled out Huntress Managed Endpoint Detection and Response (EDR) across all their clients for a month, but they scaled back when no major security issues popped up. Instead, they took a more selective approach, using it only when they spotted something suspicious or during new client onboarding.
\n

","columnTwo",{"_1697":63,"_1695":1699},"

Incident one | Managed EDR quickly shuts down a threat

In 2023, Huntress Managed EDR came in handy, flagging suspicious activity inside a client’s network. This wasn’t just any client, however. It was a company handling vast sums of money and a treasure trove of personal data. In other words, a prime target for hackers.

Huntress’ Security Operations Center (SOC) stepped in quickly, working hand-in-hand with Key Methods. In no time, endpoints were isolated, access was shut down, and the threat was contained.

Crisis averted.

…or so it seemed.

",{"_1695":1701,"_1697":63},"

Post-incident | The decision no MSP wants to make

The real challenge started after the immediate threat was handled. Key Methods was left with critical questions that would inform their next steps.

“All we knew was the attackers had possibly seen things they shouldn’t have,” says Dan Paquette, Managing Partner at Key Methods.

The entire Key Methods team was on edge, haunted by questions like, “How did the hackers get in?” “What data was compromised?” “Could they still be in the system?”

With little in terms of logs or data to go on, they had to make the call no MSP ever wants to make—shut everything down.

",{"_1695":1703,"_1697":63},"

Before Huntress Managed SIEM | Playing a costly game of guesswork

The impact was huge. The client faced over a week of downtime, more than $75,000 on incident response (IR) and legal fees, and uncertainty about their future.

“It felt like forever to get the client back online,” Paquette admits. “There were so many unknowns. We were digging through user logs, piecing together backward forensics, but our records only went back so far.”

In the end, it turned out the hacker hadn’t actually stolen any data. Using only screenshots and trickery, they’d pulled off a convincing illusion of a full database breach, leaving the client believing the worst. No data was lost, but the financial and operational toll was massive.

This was a wake-up call for Key Methods. They realized they needed more than just the ability to detect and respond to threats. They needed clear, immediate answers, especially when it mattered most.

",{"_1697":1705,"_1695":1706},"

Incident two | Managed SIEM reveals all

Not long after the incident, Huntress launched Managed Security Information and Event Management (SIEM). Key Methods jumped on board, determined to avoid ever being uncertain again. While still fine-tuning when another mass-isolation event hit, the difference was obvious.

This time, a hacker exploited a vulnerability in a client’s firewall. In the past, critical decisions had to be made in real time about whether to call in IR teams, consult legal, or notify cyber insurance. Without solid data, every decision felt like a gamble—overreacting meant wasting time and money, but hesitating could spell disaster.

With Huntress Managed SIEM in place, everything changed. Put simply, there was no more guessing. The system didn’t just flag threats—it connected the dots. Every log, every move, every breadcrumb the attacker left behind was laid out clearly.

With new technology and capabilities at their fingertips, Key Methods had complete clarity to act fast and make the right calls.

","

“Managed SIEM provides us with immediate, actionable insights, so we’re never left guessing during critical moments.”

",{"_1695":1708,"_1697":63},"

Unraveling the incident | The Huntress SOC paints a clear picture

The Huntress SOC quickly collaborated with Key Methods, providing clarity within hours. Detailed logs revealed the timeline of events and exactly where the attackers had been.

“Thanks to Managed SIEM, we had critical information fast,” said Paquette. “We reviewed the logs and immediately recognized the severity of the issue, allowing us to involve IR and legal teams quickly”

With Managed SIEM’s robust logging capabilities, Key Methods easily exported accurate, reliable data to the IR firm. “There was no question about the quality or authenticity of the logs,” Paquette noted. This significantly accelerated the investigation and led to a crucial finding: no data had been exfiltrated.

“Smaller MSPs like us usually don’t have a SOC,” Paquette explained. “With breaches in the past, we had to bring in an external team, install their tools, and wait for results. This time around, Managed SIEM handled it all. We told the SOC what we needed, ran a quick query, and immediately got clear answers like, ‘No, that executable wasn’t run anywhere else in the organization.’”

With vital insight, Key Methods swiftly shifted their focus to recovery. By isolating affected systems on day one, they could begin restoration efforts right away.

",{"_1697":1710,"_1695":1711},"

“The SOC analyzed every executable across all machines and confidently pinpointed exactly which devices the hackers had compromised. Having access to such precise, actionable information is incredibly powerful.”

","

Incident three | Managed SIEM wins the race against downtime

Weeks later, another mass-isolation event unfolded, this time targeting a bustling factory—a place where assembly lines hum, conveyor belts zip, and products are packaged with non-stop precision. A place where every minute of downtime risked thousands of dollars in lost revenue.

Again, an attacker exploited a vulnerability in the client’s firewall. But this time, there was no panic.

“We got on the phone with Huntress, and a SOC analyst immediately understood the situation,” recalls Paquette. “Within hours, we identified the issue and had already begun restoring operations. This time, legal or IR teams weren’t even needed.”

Armed with real-time intelligence from the Huntress SOC and Managed SIEM, Key Methods knew the attack’s origin with unparalleled speed. The factory was back online the same day.

“The SOC analyzed every executable across all machines and confidently pinpointed exactly which devices the hackers had compromised,” Paquette explains. “Having access to such precise, actionable information is incredibly powerful.”

What could’ve been a financially devastating shutdown was a masterclass in resilience.

",{"_1697":63,"_1695":1713},"

The power of Managed SIEM | Achieving true confidence, clarity, and control

For Key Methods, Managed SIEM brought unprecedented clarity, control, and responsiveness to their operations. With Huntress Managed SIEM, they can:

Respond to incidents in hours instead of days
Minimize client downtime and significantly cut recovery costs
Protect clients from escalating threats while avoiding unnecessary legal or forensic complications
Make decisive, high-stakes calls with confidence because they’re armed with clear insights on what happened, how it happened, and what data was affected

“It’s all about confidence and clarity,” says Paquette. “Managed SIEM provides us with immediate, actionable insights, so we’re never left guessing during critical moments.”

",{"_1697":63,"_1695":1715},"

Why Key Methods is all-in on Huntress

From day one, Huntress Managed SIEM proved its worth by helping Key Methods contain threats faster, reduce downtime, and avoid unnecessary third-party headaches. While hackers rely on staying hidden, Managed SIEM gave Key Methods complete clarity into their malicious ways.

While Managed EDR wasn’t initially a priority, it didn’t take long for Key Methods to see the power of the entire Huntress platform. Now, they’ve expanded further to make Identity Threat Detection and Response (ITDR) and Security Awareness Training (SAT) part of their offerings. Instead of treating them as optional extras, they’ve baked them into their core service plans.

What really sets Huntress apart is the technology, which is purpose-built for the Huntress SOC. This tight integration of proprietary tools and human expertise creates a defense system that radically cuts down on errors, response times, and risks.

“When your primary security layers are all unified in one platform, it’s easier to build depth with a vendor,” says Paquette. “And when everything feeds into the same SOC, it’s even better.”

","caseStudyPdfUrl","companyContactName","Dan Paquette","products",[1721,1741],{"_1722":1723},"product",{"_37":126,"_13":1724,"_128":1719,"_43":1725},"671c067f6144c945bfc997d2",{"_11":1726,"_13":1724,"_15":1300,"_17":1727,"_19":19,"_20":1728,"_34":1730,"_60":1731,"_45":1737,"_47":1738,"_49":1726,"_50":51,"_54":55,"_56":55,"_58":1739,"_172":1740},1736141572401,"017139400da04b248757ac73dd38eaff",{"_22":63,"_26":1729,"_25":60},{"_28":29,"_30":31,"_32":33},[],{"_164":1732,"_1733":79,"_1734":1300,"_15":1300,"_464":1735,"_1736":1302},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F284f4bc395cf4c38ae88bfc6f9669fe3","active","shortName","Overwhelming Data Becoming Simplified with SIEM","referenceUrl",{},1756214588904,[],"jet0rtgz7t",{"_1722":1742},{"_37":126,"_13":1743,"_128":1719,"_43":1744},"664a2fe9c12e9dbfd3b4a0b4",{"_11":1745,"_13":1743,"_15":1288,"_17":1727,"_19":19,"_20":1746,"_34":1748,"_60":1749,"_45":1754,"_47":1755,"_49":1745,"_50":51,"_54":55,"_56":55,"_58":1756,"_172":1757},1736141572469,{"_26":1747,"_25":60,"_22":63},{"_28":29,"_30":31,"_32":33},[],{"_15":1288,"_1750":1751,"_164":1752,"_1733":79,"_464":1753,"_1734":1288,"_1736":1283},"orderDate","2024-06-04T00:00:00.000Z","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fa31d628a29d240dab4e00080df8ffba1","Man working at a desk with headphones on",{},1756214521979,[],"csgiqovelya","keymethods-case-study","showAboutAnchorHyperlink","heroSubhead","How Key Methods Stopped Guessing and Took Control with Huntress Managed SIEM","introSectionDescription","

Key Methods, a top managed service provider (MSP) in Washington state, has earned a solid reputation for keeping security front and center in their business. They manage more than 2,000 endpoints and support nearly 80 clients, providing all with strong solutions to tackle the toughest threats. But as they’ve learned, when it comes to cybersecurity, it’s not just about stopping attacks—it’s also about understanding what’s really going on behind the scenes.

","heroHeadline","The MSP Who Saw It All","

Key Methods had seen their share of security incidents. But when one of their clients suffered a mass-isolation event, they realized they were flying blind. Attackers had accessed sensitive data, but without clear logs, they were left scrambling.

",{"_62":1768,"_74":1769,"_464":1669,"_64":1671}," Key Methods Case Study","Key Methods had seen their share of security incidents. But when one of their clients suffered a mass-isolation event, they realized they were flying blind. Attackers had accessed sensitive data, but without clear logs, they were left scrambling.","showPdf","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fccbc23d75b9640b69566b916ea6f832a","fullWidthQuote","

“When your primary security layers are all unified in one platform, it’s easier to build depth with a vendor. And when everything feeds into the same SOC, it’s even better.”

","Fri Oct 03 2025 00:00:00 GMT-0700 (Pacific Daylight Time)","companyAbout","

Founded in 1998 as a small IT support company, Key Methods found their niche in providing professional technology services that let their customers focus on core business competencies without worrying about their IT infrastructure.

In 2002, they shifted their focus to proactively monitor and maintain their clients’ computer networks. This new approach of focusing on “up-time” instead of waiting for “things to break” helped them grow. Today, their team consists of nearly 20 employees, serving clients around the Pacific Northwest. They look forward to pursuing their goal to be Washington State’s premier IT services company.

","https://www.huntress.com/why-huntress/case-studies/keymethods-case-study","ya6dgu0hv2",{"_1614":1670,"_1274":1780,"_77":1672},"Read the Study","Featured Success Story",{},{},1759958473605,1749565842074,[],"footerContent",[1789,1807,1819,1830,1842],{"_13":1790,"_15":1267,"_60":1791},"508d2fee7ccc4b62af82033c8240810d",{"_1280":1792,"_62":1267},[1793,1795,1796,1799,1802,1803,1804,1805],{"_1794":1279,"_77":1273},"linkText",{"_1794":1288,"_77":1283},{"_1794":1797,"_77":1798},"Managed EDR for macOS","/platform/managed-edr-for-macos",{"_1794":1800,"_1614":1615,"_77":1801},"Managed EDR for Linux","/platform/managed-edr-for-linux",{"_1794":1298,"_77":1297},{"_1794":1300,"_77":1302},{"_1794":1292,"_77":1293},{"_1794":1806,"_77":1318},"Book a Demo",{"_13":1808,"_15":1345,"_60":1809},"48e36f6d9651423da2291512cdde8b9e",{"_62":1345,"_1280":1810},[1811,1812,1813,1814,1815,1816,1817,1818],{"_1794":1358,"_77":1356},{"_1794":1362,"_77":1360},{"_1794":1366,"_77":1365},{"_77":1372,"_1794":1373},{"_1794":1375,"_77":1376},{"_77":1379,"_1794":1380},{"_77":1384,"_1794":1385},{"_1794":1388,"_77":1387},{"_13":1820,"_15":1821,"_60":1822},"eaae2a88df264ce8987bc9b7803d090a","Why Huntress?",{"_1280":1823,"_62":1821},[1824,1825,1826,1827,1829],{"_1794":1469,"_77":1470},{"_1794":1474,"_77":1475},{"_1794":1478,"_77":1479},{"_1794":1828,"_77":1488},"24/7 SOC",{"_1794":1491,"_77":1492},{"_13":1831,"_15":1528,"_60":1832},"7c53b226c0d14e18856978d679c98b2a",{"_62":1528,"_1280":1833},[1834,1835,1836,1839,1840],{"_1794":16,"_77":44},{"_1794":1532,"_77":1554},{"_1794":1837,"_77":1838,"_1614":1615},"Cybersecurity 101","/cybersecurity-education/cybersecurity-101",{"_77":1560,"_1794":1562},{"_1614":1670,"_77":1565,"_1794":1564,"_1841":79},"nofollow",{"_13":1843,"_15":1624,"_60":1844},"c211d3560ba74bc9a088ee63b66293ab",{"_62":1624,"_1280":1845},[1846,1848,1849,1851,1852],{"_1794":1847,"_77":1636},"Our Company",{"_1794":1640,"_77":1641},{"_1794":1850,"_77":1645},"News & Press",{"_1794":1658,"_77":1659},{"_1794":1665,"_77":1666},"g2Awards",[1855,1874,1891,1906],{"_13":1856,"_15":1857,"_60":1858},"b1ef1fa50cc44b4cb964fcd76ce27c47","Managed SAT Awards",{"_160":1859,"_1860":1861},"Managed SAT","images",[1862,1865,1868,1871],{"_204":1863,"_464":1864},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fae2a45c9194b4f34a7f4ad7f4ab87759","Summer 2025 Momentum Leader G2 Badge",{"_204":1866,"_464":1867},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F6b92a475a7bb4bd58eafba51d5693bc1","Summer 2025 Regional Leader Canada G2 Badge",{"_464":1869,"_204":1870},"Summer 2025 Grid Leader Small Business G2 Badge","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fc616b18ae24d4749a8c402a04f41a674",{"_204":1872,"_464":1873},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F050a3943be914e71917c1908f00a0c7a","Summer 2025 Regional Leader Europe Small Business G2 Badge",{"_13":1875,"_15":1876,"_60":1877},"a15035cbedea4437bf339e54f6573731","Managed ITDR Awards",{"_160":1298,"_1860":1878},[1879,1882,1885,1888],{"_204":1880,"_464":1881},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fbda7bf46f087452fb892ff33fa6566dd","Summer 2025 Grid Leader G2 Badge",{"_204":1883,"_464":1884},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fc2d494c6fd22444b889a68493352a4ce","Summer 2025 Best Est. ROI G2 Badge",{"_204":1886,"_464":1887},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ffea26f9142474c28b652246476967941","Summer 2025 High Performer G2 Badge",{"_204":1889,"_464":1890},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F83234adbb34d4cae9ed74a8a59e510ad","Summer 2025 Best Relationship G2 Badge",{"_13":1892,"_15":1893,"_60":1894},"f4f2c8064b7e4e92b01a3c95a41dde18","Managed EDR Awards",{"_1860":1895,"_160":1288},[1896,1898,1901,1903],{"_204":1897,"_464":1881},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fa89433591dea43aea06993ea9a932bc0",{"_204":1899,"_464":1900},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F9bc7e0583c1e4f8a8c9a95d8a9eb0136","Summer 2025 Best Results G2 Badge",{"_464":1887,"_204":1902},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fec99ed68cdf14c32991363ad838df7df",{"_464":1904,"_204":1905},"Summer 2025 Best Support Enterprise G2 Badge","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F86c5949a7494413f90457a01724a5554",{"_13":1907,"_15":1908,"_60":1909},"9b043f11647d490c8780d9136cf88b34","Default G2 Awards",{"_1860":1910,"_160":1915},[1911,1912,1913,1914],{"_464":1881,"_204":1897},{"_464":1900,"_204":1899},{"_204":1902,"_464":1887},{"_464":1904,"_204":1905},"default","assetTypes",[1918,1921,1924,1927,1930,1933,1936,1937,1940,1943],{"_13":1919,"_15":1920},"32a84769b6034b46858d0522418934d4","Checklist",{"_13":1922,"_15":1923},"65f3299e49a461b4b9c72e3c","Datasheet",{"_13":1925,"_15":1926},"65f3299e49a461b4b9c72e3e","Handbook",{"_13":1928,"_15":1929},"cec58da7fbc24a4e89cc0448374ffda9","Inforgraphic",{"_13":1931,"_15":1932},"65f3299e49a461b4b9c72e39","On-Demand Webinar",{"_13":1934,"_15":1935},"65f3299e49a461b4b9c72e38","Report",{"_13":1440,"_15":1443},{"_13":1938,"_15":1939},"65f3299e49a461b4b9c72e3d","Video",{"_13":1941,"_15":1942},"65f3299e49a461b4b9c72e3b","Whitepaper",{"_13":1944,"_15":1945},"65f3299e49a461b4b9c72e3a","eBook","actionData","errors"]