[{"_1":2,"_1096":-5,"_1097":-5},"loaderData",{"_3":4,"_7":8},"root",{"_5":6},"preprod",false,"routes/blog._index",{"_9":10,"_125":237,"_255":256,"_317":318,"_319":320,"_982":983,"_984":144,"_985":986,"_987":988},"page",{"_11":12,"_13":14,"_15":16,"_17":18,"_19":19,"_20":21,"_34":35,"_45":46,"_138":228,"_140":229,"_142":12,"_143":144,"_230":231,"_145":146,"_147":232,"_99":233,"_148":234,"_235":236},"createdDate",1737878647415,"id","65f3299e49a461b4b9c7296a","name","Blog","modelId","3fa669f9656b425bbe84446dd9c5a7cd","published","meta",{"_22":23,"_24":6,"_25":9,"_26":27},"lastPreviewUrl","https://prod.huntress.com/blog?builder.space=3eb6f92aedf74f109c7b4b0897ec39a8&builder.user.permissions=read%2Ccreate%2Cpublish%2CeditCode%2CeditDesigns%2Cadmin%2CeditLayouts%2CeditLayers%2CeditContentPriority&builder.user.role.name=Admin&builder.user.role.id=admin&builder.cachebust=true&builder.preview=page&builder.noCache=true&builder.allowTextEdit=true&__builder_editing__=true&builder.overrides.page=65f3299e49a461b4b9c7296a&builder.overrides.65f3299e49a461b4b9c7296a=65f3299e49a461b4b9c7296a&builder.overrides.page:/blog=65f3299e49a461b4b9c7296a&builder.options.includeRefs=true&builder.options.enrich=true&builder.options.locale=Default","hasLinks","kind","breakpoints",{"_28":29,"_30":31,"_32":33},"xsmall",479,"small",767,"medium",991,"query",[36],{"_37":38,"_39":40,"_41":42,"_43":44},"@type","@builder.io/core:Query","property","urlPath","operator","is","value","/blog","data",{"_47":48,"_49":50,"_51":52,"_53":48,"_54":55,"_56":48,"_57":58,"_62":44,"_59":48,"_63":64,"_65":66,"_67":68,"_219":220},"title","","openGraphImage","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F28e05784f2584d25824e4b27c802f97a","openGraphDescription","Cybersecurity is dynamic and ever-changing. Stay up-to-date with the latest information about cyber threats, vulnerabilities, and news on the Huntress blog.","metaDescription","slug","blog","titleTag","metadata",{"_59":52,"_49":60,"_47":61},"description","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F78060584ce444ba5a726170f7951a8ec","Huntress Blog","url","sitemapIndexing",true,"openGraphTitle","Huntress Blog | Huntress","blocks",[69,164,173,196],{"_37":70,"_71":72,"_13":73,"_74":75,"_150":151},"@builder.io/sdk:Element","@version",2,"builder-4304305f148848f68b3ca6d6c71746ce","component",{"_15":76,"_77":78},"BlogFeatureBannerSection","options",{"_79":80,"_87":61,"_88":89,"_90":64,"_91":92},"breadcrumbs",[81,86],{"_82":83,"_84":85},"levelText","Home","levelLinkUrl","/",{"_82":16},"heading","summary","

Welcome to the Huntress Cybersecurity Blog, your go-to spot for staying ahead of\n hackers and boosting your cybersecurity savviness. Our\n blog contributors have focused on\n making cybersecurity education engaging and accessible for everyone.

","showFeaturedBlog","featuredBlog",{"_37":93,"_13":94,"_95":96,"_43":97},"@builder.io/core:Reference","67a67e43a1912da0aa6bde9c","model","blog-posts",{"_34":98,"_99":100,"_11":101,"_13":94,"_15":102,"_17":103,"_19":19,"_20":104,"_45":106,"_138":139,"_140":141,"_142":101,"_143":144,"_145":146,"_147":146,"_148":149},[],"folders",[],1742717076617,"Huntress 2025 Cyber Threat Report: Proliferating RATs, Evolving Ransomware, and Other Findings","beafe50240af45639f2b59e6aefd89f9",{"_26":105,"_22":48,"_25":45},{"_28":29,"_30":31,"_32":33},{"_107":-5,"_15":102,"_108":109,"_110":64,"_57":111,"_116":117,"_123":124,"_125":126,"_132":133,"_54":134,"_135":136,"_88":137},"lastUpdatedDate","canonicalUrl","https://www.huntress.com/blog/huntress-2025-cyber-threat-report-proliferating-rats-evolving-ransomware-and-other-findings","featured",{"_112":6,"_47":113,"_114":6,"_59":115},"noFollow","2025 Cybersecurity Threat Report: Proliferating RATs, Evolving Ransomware, and Other Findings | Huntress","noIndex","Huntress’ 2025 Cyber Threat Report is here! Explore the year's biggest threats—RATs, phishing, ransomware—and how evolving tactics demand smarter defense.","authors",[118],{"_119":120},"author",{"_37":93,"_13":121,"_95":122},"66048598851912ddf28adf1a","people","publishDate","2025-02-11T00:00:00.000Z","categories",[127],{"_128":129},"category",{"_37":93,"_13":130,"_95":131},"65f3299e49a461b4b9c72e4d","blog-categories","thumbnail","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ffc25dbb530b84cb79bc232519d83b123?format=webp","huntress-2025-cyber-threat-report-proliferating-rats-evolving-ransomware-and-other-findings","content","

At Huntress, we like to wreck hackers. But to take them down, we first have to understand how they operate. That’s why we created the 2025 Cyber Threat Report—an in-depth exploration of the nasty tactics, trends, and techniques reshaping cybersecurity today.

Here, we highlight key findings from the past year, offering a snapshot of the malicious strategies our analysts uncovered. Whether you’re an IT professional, cybersecurity practitioner, or business owner, these insights can provide actionable guidance to help you stay one step ahead of ever-evolving cyber threats.

Top takeaways from the 2025 Cyber Threat Report

Throughout 2024, Huntress' threat analysts looked at data from thousands of organizations and millions of endpoints, revealing the key trends that show how adaptable and relentless today’s malicious hackers are.

Remote access trojans (RATs) are more popular: Over 75% of remote access incidents utilized RATs such as AsyncRAT and Jupyter. These tools are becoming more sophisticated, making multilayered defenses like endpoint detection and response (EDR) essential.
Remote monitoring and management (RMM) tools are being exploited. Attackers are weaponizing legitimate software like TeamViewer and LogMeIn to facilitate lateral movement and maintain long-term access to systems. For environments that use RMM tools, we highly suggest increasing vigilance, enhancing access controls, and closely monitoring your tools.
Ransomware strategies are evolving: Attacks are shifting from traditional encryption to data theft and extortion. Groups like RansomHub and Akira now incentivize stolen data with big rewards, making these tactics quite lucrative. The future may see ransomware operators leaning even more into extortion (or double extortion) strategies—a trend driven by the efficacy of EDR solutions and mounting pressure from government takedown efforts.
“Living off the land” techniques are on the rise: Threat actors are doubling down on using legitimate tools like Sysinternals Suite and LOLBins to evade detection. Organizations must remove unnecessary software and enforce strict execution policies to mitigate this threat.
Phishing tactics are becoming more advanced: From QR code phishing to brand impersonation, threat actors are deploying clever methods to outsmart traditional email security. Improving security awareness training and implementing layered defenses are more essential than ever to counter these sophisticated techniques.

How these trends took shape in 2024

The findings from our 2025 Cyber Threat Report are grounded in real-world data with a comprehensive view of how malicious hackers operate today. Our threat analysts observed patterns across industries like healthcare, education, government, and manufacturing, and these growing trends stood out:

Infostealers are gaining momentum: Nearly 24% of incidents involved infostealers designed to extract sensitive credentials, financial data, and other private information.
Malicious scripts are surging: Scripts made up 22% of detected attacks, using PowerShell, VBScript, and JavaScript to perform stealthy, efficient attacks.
Ransomware is fragmenting: Despite takedowns of large groups like Hive and LockBit, smaller, flexible affiliates have risen to fill the gap. Unfortunately, this led to more unpredictable, widespread attacks.

\"Industries — Industries targeted by percentage

Why these findings matter

The 2024 cybersecurity landscape exposes a simple yet alarming truth: threat actors aren’t slowing down. Because hackers' tactics and tools are evolving, you must take a proactive approach that prioritizes awareness, preparation, and consistent upgrades to defense strategies.

Understanding the tactics outlined in this report is the first essential step. By educating your teams, using multiple layers of security, and staying informed about emerging risks, you and your organization will be ready to take on any challenges that come your way.

\"Huntress — *Huntress 2025 Cyber Threat Report*

Get more from the report and stay one step ahead

The insights from our 2025 Cyber Threat Report spotlight the critical need to stay ahead of malicious hackers. With tools like RMM software and phishing techniques becoming more advanced, protecting data, systems, and users is an ongoing battle—but one you can win.

While there’s no one-size-fits-all solution, embracing layered defenses, removing unnecessary vulnerabilities, and training your team to spot threats are actionable steps everyone should take right now.

Download the entire 2025 Cyber Threat Report to gain a deeper understanding of these trends and learn more strategies for keeping your organization safe.

","

","variations",{},"lastUpdated",1744303952880,"firstPublished","testRatio",1,"createdBy","Kz459QsZDzNpORbTSiA9L6WRQc23","lastUpdatedBy","rev","eiexdhocl25","responsiveStyles",{"_152":153},"large",{"_154":155,"_156":157,"_158":159,"_160":161,"_162":163},"display","flex","flexDirection","column","position","relative","flexShrink","0","boxSizing","border-box",{"_37":70,"_71":72,"_13":165,"_74":166,"_150":171},"builder-4c139472c097464e87c1ec73f00f7381",{"_15":167,"_77":168},"BlogListSection",{"_169":170},"pageSize",15,{"_152":172},{"_154":155,"_156":157,"_158":159,"_160":161,"_162":163},{"_37":70,"_71":72,"_13":174,"_74":175,"_150":194},"builder-09dcd692cdf94623b83c105f1fac9802",{"_15":176,"_77":177},"BlogSignupSection",{"_87":178,"_88":179,"_180":181,"_182":183},"Sign Up for Huntress Updates","Get insider access to Huntress tradecraft, killer events, and the freshest blog updates.","image","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fcb5efa5143804ba59d530a903d29fe5f","blogSignupForm",{"_184":185,"_186":6,"_187":188,"_189":190,"_191":6,"_192":6,"_193":6},"formId","wf-form-Blog-Signup-Form","showFormTitle","submitButtonText","Submit","hubspotFormId","5198e52f-a296-4d78-935d-fe864d69a67a","showBlueGreenGradient","showBluePurpleGradient","useNeverBounce",{"_152":195},{"_154":155,"_156":157,"_158":159,"_160":161,"_162":163},{"_13":197,"_37":70,"_198":199,"_200":201,"_150":211},"builder-pixel-h7d1zi7ht7f","tagName","img","properties",{"_202":203,"_204":205,"_206":48,"_207":208,"_209":161,"_210":161},"src","https://cdn.builder.io/api/v1/pixel?apiKey=3eb6f92aedf74f109c7b4b0897ec39a8","aria-hidden","true","alt","role","presentation","width","height",{"_152":212},{"_210":161,"_209":161,"_154":213,"_214":161,"_215":216,"_217":218},"inline-block","opacity","overflow","hidden","pointerEvents","none","state",{"_221":152,"_222":223},"deviceSize","location",{"_224":44,"_225":226,"_34":227},"pathname","path",[55],{},{},1747062560084,"screenshot","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fb7f93b4988dd4be9b2f279c5db6b8eda","XBN8lOXr7QMH6JvQimte3OCtO6c2",[],"n7zukwo339b","template","huntress",[238,241,243,246,249,252],{"_13":239,"_15":240},"65f3299e49a461b4b9c72e33","Business Growth",{"_13":130,"_15":242},"Cybersecurity Education",{"_13":244,"_15":245},"65f3299e49a461b4b9c72e34","Cybersecurity Trends",{"_13":247,"_15":248},"65f3299e49a461b4b9c72e8a","Huntress News",{"_13":250,"_15":251},"65f3299e49a461b4b9c72e32","Response to Incidents",{"_13":253,"_15":254},"65f3299e49a461b4b9c72e31","Threat Analysis","featuredBlogPost",{"_13":257,"_15":258,"_45":259},"65f3299e49a461b4b9c7292a","Navigating the SMB Threat Landscape: Key Insights from Huntress’ SMB Threat Report",{"_54":260,"_132":261,"_125":262,"_123":289,"_107":-5,"_116":290,"_110":64},"navigating-the-smb-threat-landscape-key-insights-from-huntress-smb-threat-report","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F25d75ed735a34023a4e0b3e874210f25",[263,277],{"_128":264},{"_37":93,"_13":130,"_95":131,"_43":265},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":268,"_148":276},1739997399371,"b7b51689bde4424484bccde4b9ee6d6b",{"_15":242,"_54":269,"_57":270,"_273":271,"_53":272,"_108":274,"_59":275},"cybersecurity-education",{"_47":271,"_59":272},"Cybersecurity Education Blog Posts | Huntress","Read more about Cybersecurity Education in these Huntress blog posts. ","metaTitle","https://www.huntress.com/blog-categories/cybersecurity-education","

Cybersecurity education should be accessible and actionable, not jargony. Welcome to your hub for mastering the fundamentals and beyond. Get education and advice from our experts to deepen your knowledge and stay ahead of cyber threats—made for all levels.

","jyxib11073",{"_128":278},{"_37":93,"_13":244,"_95":131,"_43":279},{"_13":244,"_15":245,"_19":19,"_11":280,"_17":267,"_45":281,"_148":288},1739997399701,{"_15":245,"_54":282,"_57":283,"_273":284,"_53":285,"_108":286,"_59":287},"cybersecurity-trends",{"_47":284,"_59":285},"Cybersecurity Trends Blog Posts | Huntress","Read more about Cybersecurity Trends in these Huntress blog posts. ","https://www.huntress.com/blog-categories/cybersecurity-trends","

Stay a step ahead with insights into the latest developments shaping the cybersecurity landscape. From emerging threats to breakthrough technologies, we analyze how these trends impact your security strategy so you can adapt your defenses accordingly.

","w7xte6jlt3b","November 21, 2023",[291],{"_119":292},{"_37":93,"_13":121,"_95":122,"_43":293},{"_13":121,"_15":294,"_19":19,"_11":295,"_17":296,"_45":297,"_148":316},"Team Huntress",1742719371598,"d50b5ec346a64579b280b4104dca236e",{"_15":294,"_54":298,"_57":299,"_302":303,"_304":-5,"_305":306,"_307":308},"team-huntress",{"_47":300,"_59":301,"_114":6,"_112":6},"Team Huntress | Huntress","Read blog posts written by the amazing Huntress team on the Huntress Blog.","profileImage","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F94d27b5ca67c40d698b6b9f3f52bc4dc","profileImageAltText","bioDetail","

These resources have been written by some of the fantastic experts on our team. And if they’re at Huntress they’re probably ethical badasses who enjoy working every day to protect small and medium-sized businesses.

Our authors often come from backgrounds in gaming, tech innovation, IT, military intelligence, and a mix of unrelated but awesome careers like teaching, baking, music, law, and graphic design, just to name a few.

We’re a diverse team of pros who love hunting down threats, identifying trends, and writing about what we’re seeing so that everyone can benefit.

Meet more Huntress authors here.

‍

","groups",[309,313],{"_310":311},"group",{"_37":93,"_13":312,"_95":307},"00d1d80145b14a6b87c45567b169a8f4",{"_310":314},{"_37":93,"_13":315,"_95":307},"babc0d8823f34ab894a4431d5b302dc7","av26sq6xqt8","builderApiKey","3eb6f92aedf74f109c7b4b0897ec39a8","blogPosts",[321,369,418,463,507,551,652,722,763,799,824,857,894,929,954],{"_13":322,"_15":323,"_45":324},"48fc4949a8694a71a4d65fa48ad74af4","Identity Is the New Security Perimeter. And the Numbers Prove It.",{"_54":325,"_132":326,"_125":327,"_123":340,"_116":341,"_107":-5,"_367":368},"identity-threats-in-cybersecurity","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fa8746e2f24bc482dbac65a05128f46d7",[328],{"_128":329},{"_37":93,"_13":247,"_95":131,"_43":330},{"_13":247,"_15":248,"_19":19,"_11":331,"_17":267,"_45":332,"_148":339},1739997399001,{"_15":248,"_54":333,"_57":334,"_273":335,"_53":336,"_108":337,"_59":338},"huntress-news",{"_47":335,"_59":336},"Huntress News - Blog | Huntress","Read more about Huntress in the News in these Huntress blog posts. ","https://www.huntress.com/blog-categories/huntress-news","

Get the latest news, updates, and announcements from the Huntress team, including product launches, company milestones, and notable achievements.

","w1ws625n8qn","May 20, 2025",[342],{"_119":343},{"_37":93,"_13":344,"_95":122,"_43":345},"66c4a5f5c697227629494db5",{"_13":344,"_15":346,"_19":19,"_11":347,"_17":296,"_45":348,"_148":366},"Erin Meyers",1742719344684,{"_15":346,"_54":349,"_57":350,"_302":353,"_304":-5,"_354":355,"_305":356,"_357":358,"_359":360,"_307":361},"erin-meyers",{"_47":351,"_59":352,"_114":6,"_112":6},"Erin Meyers | Huntress","Read blog posts from Erin Meyers on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fad7f16e4f0974641bd481e662e010d70","jobTitle","Principal Product Marketing Manager","

Bridging people and technology to deliver impactful cybersecurity solutions.

Erin Meyers is the Principal Product Marketing Manager at Huntress, where her passion for connecting people and technology drives her work in Managed Detection & Response (MDR) and Identity Threat Detection & Response (ITDR).

Before joining Huntress, Erin was a Senior Manager of Product Marketing for MDR and Offensive Security Services at Bitdefender, where she honed her expertise in crafting solutions tailored to evolving security challenges.

Her favorite cybersecurity tip is as straightforward as it gets: “Patch.”

Outside of work, Erin enjoys cooking, photography, yoga, and binge-watching documentaries. But nothing tops spending time with her two adorable Cavalier King Charles Spaniels, who are always by her side. Whether she’s brainstorming marketing strategies or perfecting a recipe, Erin brings the same energy and dedication to everything she does.

Learn more about Erin over at her LinkedIn page.

","companyName","Huntress","linkedInUrl","https://www.linkedin.com/in/erincmeyers/",[362,364],{"_310":363},{"_37":93,"_13":312,"_95":307},{"_310":365},{"_37":93,"_13":315,"_95":307},"rvd0r0qrss","sortDate",["D",1747717200000],{"_13":370,"_15":371,"_45":372},"01083fe1ebdf47ff8695492fd6419e8f","Breaking Down Ransomware Attacks and How to Stay Ahead",{"_54":373,"_132":374,"_125":375,"_123":382,"_116":383,"_107":-5,"_367":417},"breaking-down-ransomware-attacks-and-how-to-stay-ahead","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F88af397985f64858a50ee62e863756e8",[376],{"_128":377},{"_37":93,"_13":130,"_95":131,"_43":378},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":379,"_148":381},{"_15":242,"_54":269,"_57":380,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},"liq8fm4cswp","May 15, 2025",[384],{"_119":385},{"_37":93,"_13":386,"_95":122,"_43":387},"132288e7391b453db19780e2d72554c2",{"_34":388,"_99":389,"_11":390,"_13":386,"_15":391,"_17":296,"_19":19,"_20":392,"_45":394,"_138":412,"_140":413,"_142":414,"_143":144,"_145":415,"_147":415,"_148":416},[],[],1744305098372,"Beth Robinson",{"_25":45,"_22":48,"_26":393},{"_28":29,"_30":31,"_32":33},{"_357":358,"_395":396,"_397":398,"_15":391,"_359":399,"_54":400,"_354":401,"_307":402,"_57":405,"_305":407,"_304":408,"_409":410,"_302":411},"firstName","Beth ","lastName","Robinson ","https://www.linkedin.com/in/elizabeth-robinson-cybersecurity/","beth-robinson","Brand Technical Writer",[403],{"_310":404},{"_37":93,"_13":312,"_95":307},{"_59":406,"_47":391},"Read blog posts from Beth Robinson on the Huntress Blog.\n","

","Beth Robinson - Huntress Brand Technical Writer ","altText","Huntress Default Headshot Image","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F9c9345e287fc4266a204586ff2736199",{},1744406326204,1744306946802,"0dThli925XPdcsMI4MRs7L7KCv22","517obwp67tx",["D",1747285200000],{"_13":419,"_15":420,"_45":421},"3b5cb3febb4144afba14e8a725c634a7","Healthy or Unhealthy? Huntress’ New Client-Side API Brings Endpoint Clarity",{"_54":422,"_132":423,"_125":424,"_123":430,"_116":431,"_107":-5,"_367":462},"huntress-new-client-side-api-brings-endpoint-clarity","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F323fd8422bb74502ae1c903fd839cb6e",[425],{"_128":426},{"_37":93,"_13":247,"_95":131,"_43":427},{"_13":247,"_15":248,"_19":19,"_11":331,"_17":267,"_45":428,"_148":339},{"_15":248,"_54":333,"_57":429,"_273":335,"_53":336,"_108":337,"_59":338},{"_47":335,"_59":336},"May 14, 2025",[432],{"_119":433},{"_37":93,"_13":434,"_95":122,"_43":435},"9cd0870ea4fe43ef8b4ea2396614feeb",{"_11":436,"_13":434,"_15":437,"_17":296,"_19":19,"_20":438,"_34":440,"_45":441,"_138":456,"_140":457,"_142":458,"_143":144,"_145":415,"_147":459,"_99":460,"_148":461},1746564754295,"Rob Noeth",{"_22":48,"_26":439,"_25":45},{"_28":29,"_30":31,"_32":33},[],{"_354":442,"_395":443,"_307":444,"_397":447,"_304":448,"_57":449,"_54":452,"_15":437,"_302":453,"_357":358,"_359":454,"_409":455},"Principal Software Engineer","Rob",[445],{"_310":446},{"_37":93,"_13":312,"_95":307},"Noeth","Rob Noeth Huntress",{"_47":450,"_59":451},"Rob Noeth | Huntress ","Read blog posts from Rob Noeth on the Huntress Blog","rob-noeth","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff79bd07230f54d4da1c9607f48c9af5c","https://www.linkedin.com/in/rob-noeth-2bb41765","Rob N Huntress",{},1747055366230,1746711367008,"ksrtPDlNQGhJESnopKjn4sdUP2x1",[],"emjnsywlgsw",["D",1747198800000],{"_13":464,"_15":465,"_45":466},"06b85bf066c446c18aa7a98419c61f24","For Ransomware, Time (to Ransom) is Money",{"_54":467,"_132":468,"_125":469,"_123":475,"_116":476,"_107":-5,"_367":506},"for-ransomware-time-to-ransom-is-money","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F1ace9eaad23c463992670e3dadaae9b1",[470],{"_128":471},{"_37":93,"_13":130,"_95":131,"_43":472},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":473,"_148":381},{"_15":242,"_54":269,"_57":474,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},"May 13, 2025",[477],{"_119":478},{"_37":93,"_13":479,"_95":122,"_43":480},"7fb779bf8ddf42fda6c8463ccdf60a68",{"_34":481,"_99":482,"_11":483,"_13":479,"_15":484,"_17":296,"_19":19,"_20":485,"_45":487,"_138":501,"_140":502,"_142":503,"_143":144,"_145":415,"_147":504,"_148":505},[],[],1744385801818,"Lindsey O'Donnell-Welch",{"_25":45,"_26":486,"_22":48},{"_28":29,"_30":31,"_32":33},{"_359":488,"_54":489,"_397":490,"_302":491,"_15":484,"_357":358,"_409":410,"_57":492,"_307":494,"_395":498,"_304":499,"_354":500},"https://www.linkedin.com/in/lindsey-o-donnell-welch-abb72b4a/","lindsey-odonnell-welch","O'Donnell-Welch","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F037877a541484d86ac239373c502608a",{"_47":484,"_59":493},"Read blog posts from Lindsey O'Donnell-Welch on the Huntress Blog.",[495,497],{"_310":496},{"_37":93,"_13":312,"_95":307},{},"Lindsey ","Lindsey O'Donnell-Welch Huntress ","Staff Technical Community Engagement Writer",{},1746130339005,1744404673182,"iXHKQFXOKQUVKuxcOmpn1CWL3YQ2","i4tlbi1zpdo",["D",1747112400000],{"_13":508,"_15":509,"_45":510},"5e23ebd7848940b9ae8fcf04748ddee9","Post-Exploitation Activities Observed from the Samsung MagicINFO 9 Server Flaw",{"_54":511,"_132":512,"_123":513,"_116":514,"_107":-5,"_367":550},"post-exploitation-activities-observed-from-samsung-magicinfo-9-server-flaw","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fbe8f1afdf8524a23a8ee68d7d8f05e36","May 9, 2025",[515,536],{"_119":516},{"_37":93,"_13":517,"_95":122,"_43":518},"66048bf7c9e8c5c4746884a7",{"_13":517,"_15":519,"_19":19,"_11":520,"_17":296,"_45":521,"_148":535},"Jamie Levy",1742719352103,{"_15":519,"_54":522,"_57":523,"_302":526,"_304":-5,"_354":527,"_305":528,"_357":358,"_359":529,"_307":530},"jamie-levy",{"_47":524,"_59":525,"_114":6,"_112":6},"Jamie Levy | Huntress","Read blog posts from Jamie Levy on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff466d74a8f3b4603b6f5a9662a0612c0","Director, Adversary Tactics","

Director of Adversary Tactics at Huntress.

Jamie is also a researcher, developer and board member of the Volatility Foundation. She has worked over 15 years in the digital forensics industry, conducting investigations as well as building out software solutions. Jamie is also a co-author of The Art of Memory Forensics, the first book of its kind covering various facets of how to investigate RAM artifacts.

‍

","https://www.linkedin.com/in/jlevy77/",[531,533],{"_310":532},{"_37":93,"_13":312,"_95":307},{"_310":534},{"_37":93,"_13":315,"_95":307},"jh1pdwl4hb",{"_119":537},{"_37":93,"_13":479,"_95":122,"_43":538},{"_34":539,"_99":540,"_11":483,"_13":479,"_15":484,"_17":296,"_19":19,"_20":541,"_45":543,"_138":549,"_140":502,"_142":503,"_143":144,"_145":415,"_147":504,"_148":505},[],[],{"_25":45,"_26":542,"_22":48},{"_28":29,"_30":31,"_32":33},{"_359":488,"_54":489,"_397":490,"_302":491,"_15":484,"_357":358,"_409":410,"_57":544,"_307":545,"_395":498,"_304":499,"_354":500},{"_47":484,"_59":493},[546,548],{"_310":547},{"_37":93,"_13":312,"_95":307},{},{},["D",1746766800000],{"_13":552,"_15":553,"_45":554},"60eacd2878114501812474c091b5bdaa","Utilizing ASNs for Hunting & Response",{"_54":555,"_132":556,"_125":557,"_123":570,"_116":571,"_107":-5,"_367":651},"utilizing-asns-for-hunting-and-response","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe1f7e6bf75e24b7f9d125d57a745b3b9",[558],{"_128":559},{"_37":93,"_13":253,"_95":131,"_43":560},{"_13":253,"_15":254,"_19":19,"_11":561,"_17":267,"_45":562,"_148":569},1739997400726,{"_15":254,"_54":563,"_57":564,"_273":565,"_53":566,"_108":567,"_59":568},"threat-analysis",{"_47":565,"_59":566},"Threat Analysis Blog Posts | Huntress","Read our Threat Analyses in these Huntress blog posts. ","https://www.huntress.com/blog-categories/threat-analysis","

Dive in and nerd out with us on current and emerging cybersecurity threats. We cover attack vectors, threat actors, and new vulnerabilities, providing insights to help you understand and counteract these risks.

","lj8pfgov3mp","May 8, 2025",[572,595,624],{"_119":573},{"_37":93,"_13":574,"_95":122,"_43":575},"66fc0862faf913278b305e9b",{"_13":574,"_15":576,"_19":19,"_11":577,"_17":296,"_45":578,"_148":594},"Anton Ovrutsky",1742719343202,{"_15":576,"_54":579,"_57":580,"_302":583,"_304":-5,"_354":584,"_305":585,"_357":358,"_359":586,"_587":588,"_307":589},"anton-ovrutsky",{"_47":581,"_59":582,"_114":6,"_112":6},"Anton Ovrutsky | Huntress","Read blog posts from Anton Ovrutsky on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff941baab28f74a829eb9f8619d0e4a0f","Principal Threat Hunting and Response Analyst","

From guarding doors to guarding data.

Anton Ovrutsky transitioned into cybersecurity from a Service Desk role, initially gaining experience through governance, risk, and compliance work. At Huntress, he serves as a Principal Threat Hunting and Response Analyst, with an emphasis on tactical response. \"I specialize in looking at the incidents that the SOC escalates that require more in-depth review,\" Anton explains. To put it another way, his expertise ensures that complex security incidents are thoroughly investigated and addressed.

Anton holds several prestigious certifications, including CISSP, OSCP, OSCE, CCSP, and KCNA. Prior to joining Huntress, he gained valuable experience in the SIEM vendor SaaS space.

He holds several prestigious certifications—CISSP, OSCP, OSCE, CCSP, and KCNA. Before joining Huntress, Anton worked in the SIEM vendor SaaS space, where he honed his skills in security information and event management.

What's your favorite cybersecurity tip, Anton?

\"When possible, do not assume something works a certain way unless you've tried it yourself.\"

Outside of work, Anton enjoys watching his favorite shows on his favorite couch, spending time with his wife and cats, and weightlifting. Before embarking on his cybersecurity career, he earned a master's degree in European History and even worked as a night club bouncer. Now, that’s a well-rounded resume.

Follow Anton on X: @Antonlovesdnb

","https://www.linkedin.com/in/antonovrutsky/","xTwitterUrl","https://x.com/@Antonlovesdnb",[590,592],{"_310":591},{"_37":93,"_13":312,"_95":307},{"_310":593},{"_37":93,"_13":315,"_95":307},"4b4rayqx9cg",{"_119":596},{"_37":93,"_13":597,"_95":122,"_43":598},"66048bf4812e4f377cde617d",{"_34":599,"_99":600,"_11":601,"_13":597,"_15":602,"_17":296,"_19":19,"_20":603,"_45":605,"_138":620,"_140":621,"_142":601,"_143":144,"_145":622,"_147":622,"_148":623},[],[],1742719364926,"Dray Agha",{"_26":604,"_25":45,"_22":48},{"_28":29,"_30":31,"_32":33},{"_587":606,"_302":607,"_307":608,"_304":-5,"_57":613,"_54":616,"_15":602,"_354":617,"_357":358,"_359":618,"_305":619},"https://twitter.com/Purp1eW0lf","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F96ce13bf128a4d35ae6cc645eb2cbb0d",[609,611],{"_310":610},{"_37":93,"_13":312,"_95":307},{"_310":612},{"_37":93,"_13":315,"_95":307},{"_114":6,"_112":6,"_59":614,"_47":615},"Read blog posts from Dray Agha, our Security Operations Manager on the Huntress Blog.","Dray Agha - Security Operations Manager | Huntress","dray-agha","Senior Manager, Security Operations Center","https://www.linkedin.com/in/drayagha/","

What started as a helpdesk position for a scarf company turned into a life-long obsession with computers and securing them.

Dray holds (among other certifications) an OSCP certification (Offensive Security Certified Professional). The training for OSCP covers several aspects of penetration testing, including network enumeration, vulnerability analysis, buffer overflows, web application attacks, privilege escalation, and more. Based in the UK, Dray specializes in Digital forensics and incident response and is interested in defensive and offensive information security.

“I'm here because I genuinely believe in the Huntress mission to secure the 99%—mom & pop stores, local municipal governments, mechanic shops—Huntress is looking out for regular, everyday people and families. It's an honour to provide cyber security for the community.”

What's your favorite cybersecurity tip, Dray?
“Multi-Factor Authentication is a minor inconvenience for you, and an absolutely devastating obstacle for a cybercriminal.”

‍

When he’s not on the computer or walking his dogs, you'll find him in the kitchen, Head-Cheffing it up and trying new recipes.

‍

",{},1743718527683,"wAnY6pD8qneav3wmIkWFzKSZXNM2","90ow31j66dr",{"_119":625},{"_37":93,"_13":626,"_95":122,"_43":627},"66048bf51de5bd420f2f260b",{"_34":628,"_99":629,"_11":630,"_13":626,"_15":631,"_17":296,"_19":19,"_20":632,"_45":634,"_138":648,"_140":649,"_142":630,"_143":144,"_145":622,"_147":622,"_148":650},[],[],1742719359391,"Josh Allman",{"_26":633,"_25":45,"_22":48},{"_28":29,"_30":31,"_32":33},{"_54":635,"_359":636,"_307":637,"_15":631,"_302":642,"_305":643,"_57":644,"_354":647,"_357":358,"_304":-5},"josh-allman","https://www.linkedin.com/in/jallman20/",[638,640],{"_310":639},{"_37":93,"_13":312,"_95":307},{"_310":641},{"_37":93,"_13":315,"_95":307},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F9ed3144a687b48ae8d43aac19db0b71a","

From a Minecraft DDoS attack to valiant defender of the digital realm: The Josh Allman Story

During his younger years, an unexpected DDoS attack while playing Minecraft ignited something in Josh Allman. \"Someone DDoS'd me, and it just made me infinitely curious,\" he recalls. This would end up being a pivotal moment that propelled him into the world of cybersecurity, transforming an annoying gaming disruption into a passionate career.

At Huntress, Josh specializes in incident response and web application security. His role involves identifying and mitigating cyber threats to protect clients from malicious activities. \"We do cool things daily.\"

Before joining Huntress, Josh's career journey took him from IT Support to Sales, providing him with a diverse background in technology and customer relations. He holds certifications including eJPT (eLearnSecurity Junior Penetration Tester) and BTL2, demonstrating his commitment to professional development in the cybersecurity field.

What's your favorite cybersecurity tip, Josh?

\"If you bury your computer in the backyard, you get 100% protection from all threats.”

Hard to argue with that.

Among the many interesting facts about Josh? He once \"hacked\" a satellite ground station, but you’ll have to ask him more about what that actually entailed — we’re sworn to secrecy.

Find out more about Josh at his LinkedIn page.

‍

",{"_47":645,"_59":646,"_114":6,"_112":6},"Josh Allman | Huntress","Read blog posts from Josh Allman on the Huntress Blog.","Senior Hunt & Response Analyst",{},1743718635701,"t9akn1vr9fh",["D",1746680400000],{"_13":653,"_15":654,"_45":655},"f1e86e758ae74b7e907bd76c353acb01","Rapid Response: Samsung MagicINFO 9 Server Flaw",{"_54":656,"_132":657,"_125":658,"_123":671,"_116":672,"_107":-5,"_367":721},"rapid-response-samsung-magicinfo9-server-flaw","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F94d861c26a78420b94c6695444187e65",[659],{"_128":660},{"_37":93,"_13":250,"_95":131,"_43":661},{"_13":250,"_15":251,"_19":19,"_11":662,"_17":267,"_45":663,"_148":670},1739997400367,{"_15":251,"_54":664,"_57":665,"_273":666,"_53":667,"_108":668,"_59":669},"response-to-incidents",{"_47":666,"_59":667},"Incident Responses Blog Posts | Huntress","Read more about Incident Responses in these Huntress blog posts. ","https://www.huntress.com/blog-categories/response-to-incidents","

Be the first to know about CVEs and threat advisories that we're seeing on the front lines. We'll break down how these threats or attacks work, do in-depth analysis, and provide mitigation guidance.

","hetnaxrpghc","May 7, 2025",[673,701],{"_119":674},{"_37":93,"_13":675,"_95":122,"_43":676},"6619a8c7f5f67fea22937980",{"_34":677,"_99":678,"_11":679,"_13":675,"_15":680,"_17":296,"_19":19,"_20":681,"_45":683,"_138":698,"_140":699,"_142":679,"_143":144,"_145":622,"_147":622,"_148":700},[],[],1742719349377,"Jai Minton",{"_26":682,"_25":45,"_22":48},{"_28":29,"_30":31,"_32":33},{"_57":684,"_305":687,"_15":680,"_54":688,"_307":689,"_359":694,"_357":358,"_304":-5,"_354":695,"_302":696,"_587":697},{"_112":6,"_47":685,"_59":686,"_114":6},"Jai Minton - Principal Security Operations Analyst | Huntress","Read blog posts from Jai Minton, Principal Security Operations Analyst on the Huntress Blog.","

Jai Minton’s journey into cybersecurity is as unique as it is inspiring.

Jai's initial foray into cybersecurity began in high school when he \"borrowed\" internet from a neighbor, uncovering vulnerabilities in wireless networks. This curiosity led him to pursue information security in university, despite initial reluctance. A pivotal moment during his final year placement involved identifying and addressing security issues within an organization. This achievement quickly led to the creation of a new role specifically for Jai, marking the beginning of his professional career in the cybersecurity industry.

Describing himself as a \"Jack of all Trades, Master of None,\" Jai has built a versatile skill set that spans Threat Hunting, Security Operations, Malware Analysis, Detection Engineering, Digital Forensics, and Incident Response. While his focus has been primarily on defensive security operations, threat intelligence, and threat hunting, Jai's early career included penetration testing and vulnerability assessments.

“Huntress allows me to have a flexible remote working environment, whilst still being able to use my mind to solve any hurdles encountered. This is all with the knowledge that everything is directly contributing to the ongoing security of small to medium-sized businesses which need protection the most.”

Jai’s academic credentials are impressive: a Bachelor of Information Technology, a Diploma of Government, and certifications such as OSCP, and GIAC iOS and MacOS Examiner (GIME). He has also served as an Academic Advisor for Security Blue Team’s ‘Blue Team Level 2’ (BTL2) certification, with his research being cited in renowned industry courses like SANS FOR500 (Windows Forensic Analysis).

Jai has been recognized with several prestigious awards, including:

2023: SANS Holiday Hack Challenge - Best Overall Answer Grand Prize Winner
2022: SANS Holiday Hack Challenge - Best Technical Answer Prize Winner
2021: SANS Holiday Hack Challenge - Most Creative Prize Winner
SANS Counter Hack Challenges: Core Netwars Continuous 2 - Top 1% Globally
SANS Counter Hack Challenges: DFIR Netwars Continuous 2 - Top 3% Globally

Before joining Huntress, Jai worked for CrowdStrike, further honing his expertise in the cybersecurity field.

What’s your favorite cybersecurity tip, Jai?

First, use a password manager, don't save your passwords in your browser or reuse them. Secondly, block advertisements—malicious ads are a common source of downloading software from fake websites that cause initial infections on a system.”

Outside of his professional life, Jai enjoys research, gaming, and spending time with his loved ones.

You can learn more about Jai on his website jaiminton.com or follow him on Twitter/X and YouTube @CyberRaiju.

","jai-minton",[690,692],{"_310":691},{"_37":93,"_13":312,"_95":307},{"_310":693},{"_37":93,"_13":315,"_95":307},"https://www.linkedin.com/in/jaiminton/","Manager, Hunt & Response - AUS","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fd158bbe5530045be8a6c7f1a4de7ed45","https://x.com/CyberRaiju/",{},1743718595032,"odx07wzk5rs",{"_119":702},{"_37":93,"_13":703,"_95":122,"_43":704},"66ad03afb52427985d2289c7",{"_13":703,"_15":705,"_19":19,"_11":706,"_17":296,"_45":707,"_148":720},"Craig Sweeney",1742719345067,{"_15":705,"_54":708,"_57":709,"_302":712,"_304":-5,"_354":647,"_305":713,"_357":358,"_359":714,"_307":715},"craig-sweeney",{"_47":710,"_59":711,"_114":6,"_112":6},"Craig Sweeney | Huntress","Read blog posts from Craig Sweeney on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F50fdecb10c434756a9e09a6a4c8ee782","

Bringing military precision to cybersecurity threat hunting.

Craig Sweeney decided to transfer his skills from the physical security space into cyber, leveraging his background to combat digital threats. With a Bachelor of Science in Computer Science and the eCTHP (eLearnSecurity Certified Threat Hunting Professional) certification, he specializes in threat hunting, detection engineering, and threat intelligence at Huntress.

Before joining Huntress, Craig served in the United States Marine Corps and later worked as an adjunct instructor teaching threat hunting and security engineering. His diverse experience equips him with a comprehensive understanding of cybersecurity's theoretical and practical aspects.

What he loves most about working at Huntress is the remote working environment and the unique mission to protect the 99%. \"It enables us to attract some of the best talent in the world,\" he says.

What’s your favorite cybersecurity tip, Craig?

For those who work in the cybersecurity space: \"Brilliance in the basics. If you master the basics, you're 90% of the way there.\"

For the general public: \"Use MFA on all accounts, and verify who you're talking to for any transaction by using personal questions.\"

Learn more about Craig over at his LinkedIn page.

‍

","https://www.linkedin.com/in/c-a-sweeney/",[716,718],{"_310":717},{"_37":93,"_13":312,"_95":307},{"_310":719},{"_37":93,"_13":315,"_95":307},"1l5k5tmw4et",["D",1746594000000],{"_13":723,"_15":724,"_45":725},"a7c51a9ccd0b452aa26a2e8f0751be4c","Do Tigers Really Change Their Stripes?",{"_54":726,"_132":727,"_125":728,"_123":734,"_116":735,"_107":-5,"_367":762},"do-tigers-really-change-their-stripes","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ff869df80f0ab4eb788747d2ecc98e1bf",[729],{"_128":730},{"_37":93,"_13":253,"_95":131,"_43":731},{"_13":253,"_15":254,"_19":19,"_11":561,"_17":267,"_45":732,"_148":569},{"_15":254,"_54":563,"_57":733,"_273":565,"_53":566,"_108":567,"_59":568},{"_47":565,"_59":566},"May 6, 2025",[736],{"_119":737},{"_37":93,"_13":738,"_95":122,"_43":739},"cfdeb48758ab413bbfe076dc502dd7fc",{"_34":740,"_99":741,"_11":742,"_13":738,"_15":743,"_17":296,"_19":19,"_20":744,"_45":746,"_138":758,"_140":759,"_142":760,"_143":144,"_145":415,"_147":146,"_148":761},[],[],1744404719597,"Huntress Adversary Tactics",{"_25":45,"_26":745,"_22":48},{"_28":29,"_30":31,"_32":33},{"_307":747,"_395":750,"_357":358,"_57":751,"_354":754,"_15":743,"_397":755,"_304":756,"_54":757,"_409":410,"_302":411},[748],{"_310":749},{"_37":93,"_13":312,"_95":307},"Adversary",{"_409":410,"_59":752,"_49":411,"_47":753},"Read blog posts from our Huntress Adversary Tactics Team on the Blog.","Adversary Tactics ","Adversary Tactics Team","Tactics","Huntress Adversary Tactics Team","huntress-adversary-tactics",{},1744755246163,1744405637129,"9fer5ume54",["D",1746507600000],{"_13":764,"_15":765,"_45":766},"095bddf14d014ad088de6d3cc6cdc6f3","The 36 Most Common Cyberattacks [2025] ",{"_54":767,"_132":768,"_125":769,"_123":775,"_116":776,"_107":-5,"_367":798},"most-common-cyberattacks","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F6c00a04325734f56ab8baa8650aa4ff5",[770],{"_128":771},{"_37":93,"_13":130,"_95":131,"_43":772},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":773,"_148":381},{"_15":242,"_54":269,"_57":774,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},"May 2, 2025",[777],{"_119":778},{"_37":93,"_13":779,"_95":122,"_43":780},"673e4076804468f80b5f2555",{"_13":779,"_15":781,"_19":19,"_11":782,"_17":296,"_45":783,"_148":797},"Brenda Buckman",1742719341711,{"_15":781,"_54":784,"_57":785,"_302":788,"_304":-5,"_354":789,"_305":790,"_357":358,"_359":791,"_307":792},"brenda-buckman",{"_47":786,"_59":787,"_114":6,"_112":6},"Brenda Buckman | Huntress","Brenda Buckman is the Senior Director of Digital Web Presence at Huntress, bringing her passion for storytelling and digital innovation to the forefront of our marketing efforts.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fea04d403555644f48db8e600fef9e64d","Senior Director, Web","

A passionate storyteller shaping Huntress's digital presence.

Brenda Buckman is the Senior Director of Digital Web Presence at Huntress, bringing her passion for storytelling and digital innovation to the forefront of our marketing efforts.

\"I love working at Huntress for so many reasons, but what stands out the most is the company’s unwavering commitment to the cybersecurity community and its customers,\" Brenda shares. \"Huntress isn’t just about providing a product; it’s about truly putting people first—ensuring that every decision we make prioritizes the protection and peace of mind of those we serve.\"

Specializing in marketing and digital presence—especially web—Brenda focuses on making cybersecurity more accessible and engaging through compelling digital experiences. She appreciates the Huntress culture of transparency and candor. \"It's refreshing to work in an environment where open communication is encouraged. This level of honesty fosters trust, helps keep everyone on the same page, and enables more collaboration,\" she says.

Before joining Huntress, Brenda worked in the home services industry, managing digital products for on-demand service offerings. Her experience honed her skills in creating user-focused digital experiences and delivering solutions that resonate with audiences.

Brenda is also an avid storyteller outside of her work at Huntress—she’s currently crafting her first novel and immersing herself in captivating books, mainly in the science fiction and fantasy realm. She loves being creative in all aspects of her life, from trying out new crafts and hobbies to hosting themed parties for her friends. Recently, she's picked up mahjong, finding it a fun new challenge. Brenda also enjoys live music, traveling, and exploring new culinary experiences as a foodie. \"Life's an adventure, and I love it!\" she says. We tend to believe her.

Learn more about Brenda at her LinkedIn profile.

‍

","https://www.linkedin.com/in/brenda-buckman-40821342/",[793,795],{"_310":794},{"_37":93,"_13":312,"_95":307},{"_310":796},{"_37":93,"_13":315,"_95":307},"ds43v765b1i",["D",1746190800000],{"_13":800,"_15":801,"_45":802},"174885baf615431688e3b5a7142fbf92","36 Must-Know Password Statistics To Boost Cybersecurity (2025)",{"_54":803,"_132":804,"_125":805,"_123":811,"_116":812,"_107":-5,"_367":823},"password-statistics","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4458c2e8594e4cb19c5b6acc5e2023af",[806],{"_128":807},{"_37":93,"_13":130,"_95":131,"_43":808},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":809,"_148":381},{"_15":242,"_54":269,"_57":810,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},"May 1, 2025",[813],{"_119":814},{"_37":93,"_13":779,"_95":122,"_43":815},{"_13":779,"_15":781,"_19":19,"_11":782,"_17":296,"_45":816,"_148":797},{"_15":781,"_54":784,"_57":817,"_302":788,"_304":-5,"_354":789,"_305":790,"_357":358,"_359":791,"_307":818},{"_47":786,"_59":787,"_114":6,"_112":6},[819,821],{"_310":820},{"_37":93,"_13":312,"_95":307},{"_310":822},{"_37":93,"_13":315,"_95":307},["D",1746075600000],{"_13":825,"_15":826,"_45":827},"5e1e44dd35af4da5993b68ee72882bc9","Applying Criminal Justice Principles to Detection Engineering",{"_54":828,"_132":829,"_125":830,"_123":811,"_116":836,"_107":-5,"_367":856},"applying-criminal-justice-principles-to-detection-engineering","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe2b8962c10f8428486111bf76ce7a89f",[831],{"_128":832},{"_37":93,"_13":130,"_95":131,"_43":833},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":834,"_148":381},{"_15":242,"_54":269,"_57":835,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},[837],{"_119":838},{"_37":93,"_13":839,"_95":122,"_43":840},"678696f94ba450385d993b59",{"_13":839,"_15":841,"_19":19,"_11":842,"_17":296,"_45":843,"_148":855},"Andrew Schwartz",1742719338064,{"_15":841,"_54":844,"_57":845,"_302":847,"_304":-5,"_354":848,"_357":358,"_359":849,"_307":850},"andrew-schwartz",{"_47":846,"_59":846,"_114":6,"_112":6},"Read more blog post from Andrew Schwartz on Huntress.com.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F03f65e0dd6ba45fd93072b5733785238","Senior Manager, Detection Engineering","https://www.linkedin.com/in/schwartzah/",[851,853],{"_310":852},{"_37":93,"_13":312,"_95":307},{"_310":854},{"_37":93,"_13":315,"_95":307},"tgb7n6hof4a",["D",1746075600000],{"_13":858,"_15":859,"_45":860},"65f3299e49a461b4b9c729f8","What Is Business Email Compromise? BEC Defined",{"_54":861,"_132":862,"_125":863,"_123":869,"_107":870,"_116":871,"_110":6,"_367":893},"what-is-business-email-compromise-bec","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F23d923d12fa84474bb87eae5a20490eb?format=webp",[864],{"_128":865},{"_37":93,"_13":130,"_95":131,"_43":866},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":867,"_148":381},{"_15":242,"_54":269,"_57":868,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},"October 24, 2023","April 30, 2025",[872],{"_119":873},{"_37":93,"_13":874,"_95":122,"_43":875},"66048bf6997dfd6acecb7d0a",{"_13":874,"_15":876,"_19":19,"_11":877,"_17":296,"_45":878,"_148":892},"Lily Lewis",1742719356559,{"_15":876,"_54":879,"_57":880,"_302":883,"_304":-5,"_354":884,"_305":885,"_357":358,"_359":886,"_307":887},"lily-lewis",{"_47":881,"_59":882,"_114":6,"_112":6},"Lily Lewis | Huntress","Read blog posts from Lily Lewis on the Huntress Blog.","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F11091aeb533f42e59c2f9209795c976c","Manager of Content Marketing","

Content strategist, marketing maven, and natural storyteller.

Lily Lewis is the Manager of Content Marketing at Huntress, bringing to the table almost a decade of experience in the IT and software space. With a Content Marketing Certification from HubSpot, she excels in crafting strategies that educate, engage, and inspire.

Lily has a deep passion for content strategy and storytelling. She’s always ready to dive into a good brainstorming session to generate innovative ideas that help Huntress’ community grow their knowledge and solve their toughest challenges.

Before joining the Huntress team, Lily honed her marketing skills in various IT and software industry roles. Her extensive experience has equipped her with the insights and expertise to lead impactful and relevant content marketing initiatives.

When she's not busy creating compelling content, Lily enjoys indulging in her love for puns, corny dad jokes, and testing out new recipes.

Go ahead and give Lily a follow on LinkedIn.

","https://www.linkedin.com/in/lily-teplow-lewis/",[888,890],{"_310":889},{"_37":93,"_13":312,"_95":307},{"_310":891},{"_37":93,"_13":315,"_95":307},"y9wzryrp1wh",["D",1746050400000],{"_13":895,"_15":896,"_45":897},"6648ad71eef14f7c8f6a93126d0a795c","Minutes Matter: Huntress Managed SIEM Makes Them Count (Here’s How)",{"_54":898,"_132":899,"_125":900,"_123":906,"_116":907,"_107":-5,"_367":928},"minutes-matter-huntress-managed-siem-makes-them-count","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F37776d8465ff403e94183ba87ce7f64f",[901],{"_128":902},{"_37":93,"_13":247,"_95":131,"_43":903},{"_13":247,"_15":248,"_19":19,"_11":331,"_17":267,"_45":904,"_148":339},{"_15":248,"_54":333,"_57":905,"_273":335,"_53":336,"_108":337,"_59":338},{"_47":335,"_59":336},"April 29, 2025",[908],{"_119":909},{"_37":93,"_13":910,"_95":122,"_43":911},"d28d6e3ca75f4003ae36c1e4866bbd4d",{"_34":912,"_99":913,"_11":914,"_13":910,"_15":915,"_17":296,"_19":19,"_20":916,"_45":918,"_138":923,"_140":924,"_142":925,"_143":144,"_145":926,"_147":926,"_148":927},[],[],1744049019332,"Aimee Simpson",{"_26":917,"_25":45,"_22":48},{"_28":29,"_30":31,"_32":33},{"_15":915,"_54":919,"_302":920,"_354":921,"_359":922},"auther-aimee","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F1ad76c8cc09c4ec6bacabb266bd16cde","Director, Product Marketing","https://www.linkedin.com/in/aimeesimpson/",{},1744049133938,1744049133929,"rqPhimgdOfVCrDCbaxcCVZPJeJc2","baonr5wel6v",["D",1745902800000],{"_13":930,"_15":931,"_45":932},"1b6c319dde6a4ad0a8b448b1c7d306bf","Identity Threats Got a Whole Lot Nastier, But So Did We: Introducing the New Huntress Managed ITDR, Now with Rogue Apps",{"_54":933,"_132":934,"_125":935,"_123":941,"_116":942,"_107":-5,"_367":953},"protect-against-identity-threats-with-managed-itdr-and-rogue-apps","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F2445f146c0644472991673385dc2a425",[936],{"_128":937},{"_37":93,"_13":247,"_95":131,"_43":938},{"_13":247,"_15":248,"_19":19,"_11":331,"_17":267,"_45":939,"_148":339},{"_15":248,"_54":333,"_57":940,"_273":335,"_53":336,"_108":337,"_59":338},{"_47":335,"_59":336},"April 28, 2025",[943],{"_119":944},{"_37":93,"_13":344,"_95":122,"_43":945},{"_13":344,"_15":346,"_19":19,"_11":347,"_17":296,"_45":946,"_148":366},{"_15":346,"_54":349,"_57":947,"_302":353,"_304":-5,"_354":355,"_305":356,"_357":358,"_359":360,"_307":948},{"_47":351,"_59":352,"_114":6,"_112":6},[949,951],{"_310":950},{"_37":93,"_13":312,"_95":307},{"_310":952},{"_37":93,"_13":315,"_95":307},["D",1745816400000],{"_13":955,"_15":956,"_45":957},"2ad3dd4821b8417a804d12801bb6321e","Credential Theft: Expanding Your Reach, Pt. II",{"_54":958,"_132":959,"_125":960,"_123":966,"_116":967,"_107":-5,"_367":981},"credential-theft-expanding-your-reach-pt-2","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F5389552a2dc8495ba553344ec918772f",[961],{"_128":962},{"_37":93,"_13":130,"_95":131,"_43":963},{"_13":130,"_15":242,"_19":19,"_11":266,"_17":267,"_45":964,"_148":381},{"_15":242,"_54":269,"_57":965,"_273":271,"_53":272,"_108":274,"_59":275},{"_47":271,"_59":272},"April 24, 2025",[968],{"_119":969},{"_37":93,"_13":738,"_95":122,"_43":970},{"_34":971,"_99":972,"_11":742,"_13":738,"_15":743,"_17":296,"_19":19,"_20":973,"_45":975,"_138":980,"_140":759,"_142":760,"_143":144,"_145":415,"_147":146,"_148":761},[],[],{"_25":45,"_26":974,"_22":48},{"_28":29,"_30":31,"_32":33},{"_307":976,"_395":750,"_357":358,"_57":979,"_354":754,"_15":743,"_397":755,"_304":756,"_54":757,"_409":410,"_302":411},[977],{"_310":978},{"_37":93,"_13":312,"_95":307},{"_409":410,"_59":752,"_49":411,"_47":753},{},["D",1745470800000],"totalPages",30,"pageNumber","event","loader","common",{"_989":990,"_1002":1003,"_1070":1071},"headerContent",[991],{"_13":992,"_15":993,"_45":994,"_140":1001},"58922ccec86f4a31afd22c221dc93cea","About Feature",{"_88":995,"_47":996,"_409":997,"_180":998,"_999":1000},"

When a mass-isolation event hit, Key Methods realized they were flying blind. See how Huntress Managed SIEM gave them the visibility they needed.

","Key Methods","Key Methods Thumbnail ","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fccbc23d75b9640b69566b916ea6f832a","link","https://cdn.builder.io/o/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F659979229f5449f28c49a65895b9d2ef?alt=media&token=e87850ca-2ec6-4625-a6d9-b2e8a487f1ad&apiKey=3eb6f92aedf74f109c7b4b0897ec39a8",1745874913292,"g2Awards",[1004,1023,1041,1059],{"_13":1005,"_15":1006,"_45":1007},"b1ef1fa50cc44b4cb964fcd76ce27c47","Managed SAT Awards",{"_128":1008,"_1009":1010},"Managed SAT","images",[1011,1014,1017,1020],{"_180":1012,"_409":1013},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fe6cc6492c7ad457db8613e2be1b0bf7a","Security Awareness Training Leader Small Business G2 Badges Spring 2025",{"_180":1015,"_409":1016},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fa20ef7581ec94548b774ab925b721874","Security Awareness Training Momentum Leader G2 Badges Spring 2025",{"_180":1018,"_409":1019},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fb22fd7c3f53744aeaad49a1383a8adf2","Security Awareness Training Regional Leader EMEA G2 Badges Spring 2025",{"_409":1021,"_180":1022},"Security Awareness Training Regional Leader Europe G2 Badges Spring 2025","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F8fc8eb8c2feb400dabbbe15a0e65ebd4",{"_13":1024,"_15":1025,"_45":1026},"a15035cbedea4437bf339e54f6573731","Managed ITDR Awards",{"_128":1027,"_1009":1028},"Managed ITDR",[1029,1032,1035,1038],{"_180":1030,"_409":1031},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F9710816629b94b46803509bc69c90b6c","Identity Threat Detection and Response (ITDR) Leader G2 Badge Spring 2025",{"_409":1033,"_180":1034},"Identity Threat Detection and Response (ITDR) High Performer G2 Badge Spring 2025","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Ffbee1654661a4853b7bdc68eba98a19b",{"_409":1036,"_180":1037},"Identity Threat Detection and Response (ITDR) Best Estimated ROI G2 Badge Spring 2025","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4c7270fe798448eb893d35ec3a6c5230",{"_180":1039,"_409":1040},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fac3ee471f9be4debbe512f873584df07","Identity Threat Detection and Response (ITDR) Best Support G2 Badge Spring 2025",{"_13":1042,"_15":1043,"_45":1044},"f4f2c8064b7e4e92b01a3c95a41dde18","Managed EDR Awards",{"_1009":1045,"_128":1058},[1046,1049,1052,1055],{"_409":1047,"_180":1048},"Managed Detection and Response(MDR) Grid Leader G2 Badge Spring 2025","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F54010559656e44848d6f2b5e1478bd6f",{"_180":1050,"_409":1051},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F559f64e417b34c02ae35785fa6f44de1","Managed Detection and Response(MDR) High Performer Enterprise G2 Badge Spring 2025",{"_180":1053,"_409":1054},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F64b4e0f5995b44ed95804354224cb723","Managed Detection and Response(MDR) Best Support G2 Badge Spring 2025",{"_409":1056,"_180":1057},"Managed Detection and Response(MDR) Best Results G2 Badge Spring 2025","https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2Fd748e2d9379544119bb9895ec2304877","Managed EDR",{"_13":1060,"_15":1061,"_45":1062},"9b043f11647d490c8780d9136cf88b34","Default G2 Awards",{"_128":1063,"_1009":1064},"default",[1065,1066,1067,1069],{"_180":1050,"_409":1051},{"_180":1053,"_409":1054},{"_180":1068},"https://cdn.builder.io/api/v1/image/assets%2F3eb6f92aedf74f109c7b4b0897ec39a8%2F4b380ad74f5142e682933db387225c5f",{"_180":1057,"_409":1056},"assetTypes",[1072,1075,1078,1081,1084,1087,1090,1093],{"_13":1073,"_15":1074},"65f3299e49a461b4b9c72e3c","Datasheet",{"_13":1076,"_15":1077},"65f3299e49a461b4b9c72e3e","Handbook",{"_13":1079,"_15":1080},"65f3299e49a461b4b9c72e39","On-Demand Webinar",{"_13":1082,"_15":1083},"65f3299e49a461b4b9c72e38","Report",{"_13":1085,"_15":1086},"65f3299e49a461b4b9c72e40","Success Kit",{"_13":1088,"_15":1089},"65f3299e49a461b4b9c72e3d","Video",{"_13":1091,"_15":1092},"65f3299e49a461b4b9c72e3b","Whitepaper",{"_13":1094,"_15":1095},"65f3299e49a461b4b9c72e3a","eBook","actionData","errors"]

Managed EDR

Managed Security Awareness Training

Managed ITDR

Managed SIEM

Learn More

Phishing

Compliance

Business Email Compromise

Education

Finance

Healthcare

Manufacturing

State & Local Government

Healthcare Cybersecurity Success Kit

Managed Service Providers

Value Added Resellers

Business & IT Teams

Huntress SOC

Case Studies

Bitdefender

Blackpoint

CrowdStrike

Datto

SentinelOne

Sophos

Webroot

Datasheets

Ebooks

Reports

On-Demand Webinars

Whitepapers

Videos

Blog

Upcoming Events

Support Documentation

Integrations

The Huntress Threat Report

Our Story

Leadership

Latest News

Awards

Careers

Upcoming Events

Contact Us

Key Methods

Huntress Blog

Sign Up for Huntress Updates