Huntress Debuts Industry-Disrupting Managed SIEM to Democratize Cybersecurity for Businesses of All Sizes
Huntress Managed SIEM enables customers to spot and neutralize threats earlier in the attack chain than they would with an Endpoint Detection and Response (EDR) solution alone. Another benefit – Managed SIEM customers experience a fast time to value after deployment, thanks to expert eyes on their environment from day one. For example, threat hunting performed by the Huntress SOC discovered an RDP brute force attack less than 15 hours after the customer deployed Huntress.
Advancing its mission to make enterprise-grade cybersecurity accessible beyond the Fortune 1000, Huntress unveiled the general availability of its Managed SIEM with new and expanded functionality, including:
'Security incidents can happen in minutes, and protection shouldn't be reserved only for companies with big budgets and teams. SIEM providers talk a big game with promises of a single pane of glass, actionable visibility, and improved compliance and security posture, but the reality is complexity, noise, and soaring storage costs. We dropped the big data-lake mentality and built our SIEM to store only the data required for threat hunting and compliance, which earned us a spot on Fast Company's 50 Most Innovative Companies list. We are ready to unshackle security teams from lengthy integrations, customizing rules, and sifting through massive amounts of data looking for a needle in a haystack,' said Chris Bisnett, CTO and Co-founder of Huntress.
Because the elite Huntress SOC already monitors threats 24/7 for millions of endpoints and identities, its Managed SIEM gives fast and effective herd immunity from emerging threat actor tradecraft. Anything caught for one organization helps Huntress' SOC shut it down faster for the next.
'Huntress Managed SIEM is incredibly beneficial as it seamlessly integrates information from firewalls, endpoints, and antivirus solutions, allowing us to see an incident's full scope, rather than just isolated parts. We have been able to get our clients up and running quickly and provide detailed assessments and actionable remediation steps. Ultimately, Huntress Managed SIEM is an invaluable tool for our business. I'd confidently recommend it to anyone looking to enhance their cybersecurity capabilities, ensure thorough incident analysis, and support rapid recovery efforts,' said Dan Paquette, President of Key Methods.
Additional Resources:
About Huntress
Huntress is the enterprise-grade, people-powered cybersecurity solution for all businesses, not just the 1%. With fully owned technology developed by and for its industry-defining team of security analysts, engineers, and researchers, Huntress elevates underresourced tech teams, whether they work within outsourced IT environments or in-house IT and security teams.
The 24/7 industry-leading Huntress Security Operations Center (SOC) covers cyber threats for outsourced IT and in-house teams through remediation with a false-positive rate of less than 1%. With a mission to break down barriers to enterprise-level security and always give back more than it takes, Huntress is often the first to respond to major hacks and threats while protecting its partners and shares tradecraft analysis and threat advisories with the community as they happen.
As long as hackers keep hacking, Huntress keeps hunting. Join the hunt at www.huntress.com and follow us on X, Instagram, Facebook, and LinkedIn.
Huntress Contact:
[email protected]
A video accompanying this announcement is available at https://www.globenewswire.com/NewsRoom/AttachmentNg/315a5cde-01b3-4aa5-9eac-f9cc2ff39442
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
2 days ago
- Yahoo
This forgotten FTP flaw lets hackers take full control - millions of servers exposed across the world
When you buy through links on our articles, Future and its syndication partners may earn a commission. Hackers launched attacks just one day after the flaw's full technical write-up was made public Many servers stayed vulnerable for weeks despite a fix being released long before the disclosure Null byte injection in the username field lets attackers bypass login and run Lua code Security researchers have confirmed attackers are actively exploiting a critical vulnerability in Wing FTP Server, a widely used solution for managing file transfers. Researchers at Huntress say the flaw identified as CVE-2025-47812 was disclosed publicly on June 30, and exploitation began almost immediately, just a day later. This vulnerability allows unauthenticated remote code execution (RCE), enabling attackers to run code as root or SYSTEM on vulnerable servers. Wing FTP Server remains vulnerable in unpatched systems Wing FTP Server is deployed across enterprise and SMB environments, and it is used by more than 10,000 organizations globally, including high-profile clients such as Airbus, Reuters, and the US Air Force. The vulnerability exists in versions 7.4.3 and earlier and has been patched in version 7.4.4, which was released on May 14, 2025. Despite the fix being available for over a month, many users remained unpatched when technical details were made public. Security researcher Julien Ahrens, explained the issue stems from improper input sanitization and unsafe handling of null-terminated strings. The weakness allows a null byte injected in the username field to bypass authentication and insert malicious Lua code into session files. These files, when deserialized by the server, trigger code execution at the highest system level. One attacker created malicious session files that used certutil and to fetch and execute remote payloads. Although the attack was ultimately unsuccessful, thanks in part to Microsoft Defender, researchers noted that the intruders attempted to escalate privileges, perform reconnaissance, and create new users to maintain persistence. Another attacker reportedly had to look up how to use curl mid-attack, and one even involved a second party during the operation. This shows the persistence of attackers who are likely scanning for exposed Wing FTP instances, including those running outdated versions. Even if attackers lacked sophistication, the vulnerability remains highly dangerous. Researchers recommend upgrading to version 7.4.4 immediately, but where updates aren't possible, disabling HTTP/S access, removing anonymous login options, and monitoring session file directories are essential mitigation steps. Three additional vulnerabilities were reported: one enabling password exfiltration through JavaScript, another exposing system paths via an overlong cookie, and a third highlighting the server's lack of sandboxing. While these pose serious risks, CVE-2025-47812 has received the highest severity rating due to its potential for complete system compromise. Via The Register and BleepingComputer You might also like Here's a list of the best firewalls around today These are the best endpoint security tools right now Data of all 6.5 million Co-op members stolen - CEO says she is 'incredibly sorry'
Business Upturn
18-07-2025
- Business Upturn
Advanced Networks Transforms IT Support in LA to Improve Network Security and Safeguard Businesses
Los Angeles, July 17, 2025 (GLOBE NEWSWIRE) — Advanced Networks, a top provider of Managed IT Services and IT support in Southern California, is tackling the pressing need for better network security among businesses in Los Angeles. Strong security measures are vital in protecting sensitive information and ensuring that businesses can keep operating smoothly. The company sees IT Support Los Angeles as a crucial element in boosting network security for local businesses. The heart of Advanced Networks' security approach is proactive threat detection and monitoring. With round-the-clock network monitoring, businesses can spot threats in real time, which lowers the chances of data breaches. Tools like Security Information and Event Management (SIEM) are used for ongoing threat analysis and log monitoring, securing networks against potential cyber threats. A company representative emphasizes, 'Advanced Networks is committed to providing comprehensive IT Consulting Los Angeles services tailored to the unique needs of each business. Our flexibility in adjusting security protocols ensures businesses remain resilient as they grow or face new challenges.' Routine risk assessments and managing vulnerabilities are key parts of Advanced Networks' strategy. By regularly assessing vulnerabilities, the company finds weaknesses and possible threats within networks. They also conduct penetration testing to uncover security holes that could be exploited. This proactive approach helps businesses strengthen their defenses and stay one step ahead of cybercriminals. Proper firewall and network configuration management are vital in Advanced Networks' security solutions. Configuring firewalls, routers, and network devices correctly prevents unauthorized access. Network segmentation further limits access and reduces the potential impact of breaches. These strategies form a cohesive defense system, shielding businesses from various cyber threats. Protecting data through encryption and secure communication is a priority for Advanced Networks. Encrypting sensitive business data helps safeguard clients from data theft. Using secure communication protocols like SSL/TLS ensures that emails, transactions, and other data exchanges stay safe from interception. This two-pronged approach to data protection boosts the overall security of businesses. Training employees to stay alert to threats is a fundamental part of the company's security framework. IT support staff educate employees on recognizing and handling phishing, social engineering, and other threats. Continuous security awareness programs keep staff informed and alert to new threats, cultivating a culture of cybersecurity awareness within organizations. Advanced Networks highlights the importance of disaster recovery and business continuity planning. A robust disaster recovery plan is vital for restoring operations after an attack or data loss. IT support services focus on regularly backing up data and testing backup recovery methods to lessen downtime during cyberattacks. This thorough approach to disaster recovery helps minimize disruptions and enables businesses to quickly resume operations. Advanced Networks also excels in helping businesses meet compliance standards. The company's IT support assists with complying with important regulations like HIPAA, PCI-DSS, and GDPR. By ensuring networks and systems follow industry standards and best practices, Advanced Networks helps protect the security and privacy of data for businesses in various sectors. Securing devices and endpoints is a fundamental part of Advanced Networks' services. Endpoint protection tools protect all devices connected to a network, from desktops and laptops to mobile devices. Mobile Device Management (MDM) solutions secure company devices used by remote or traveling employees, enhancing overall security. Handling security incidents and remediation is central to the company's offerings. Advanced Networks can quickly respond to security events, limit damage, and look into breaches. Their remediation efforts restore affected systems, secure data, and implement measures to avoid future attacks. The company's dedication to crafting tailored security solutions means businesses get protection that suits their specific needs. The flexibility of Managed IT Services Los Angeles allows security strategies to evolve with growing demands in the industry. By focusing on custom solutions, Advanced Networks gives businesses a strategic edge in protecting their operations. IT Support Los Angeles Through a wide range of services, Advanced Networks delivers the tools and expertise needed to effectively secure business networks. By prioritizing proactive security measures, regulatory compliance, and personalized solutions, the company positions itself as a trusted partner in defending businesses against cyber threats. Visit the Advanced Networks website to learn more about how they can help secure one's business. ### For more information about Advanced Networks, contact the company here: Advanced NetworksAdvanced Networks(213) 873-7620 [email protected] L.A. Office10960 Wilshire Blvd. #1415 Los Angeles, CA 90024
Yahoo
17-07-2025
- Yahoo
Securonix Expands Global Presence Through Strategic Alliance with Skyone for Next-Generation CyberOps
Strategic MSSP Partnership delivers revolutionary SIEM, SOAR, and UEBA capabilities as-a-service globally PLANO, Texas, July 17, 2025--(BUSINESS WIRE)--Securonix, Inc., a five-time Leader in the Gartner® Magic Quadrant™ for Security Information and Event Management (SIEM), and Customers' Choice in the 2024 Gartner Peer Insights 'Voice of the Customer,' today announced a strategic alliance with Skyone, a fast-growing managed security service provider (MSSP) in Latin America. The partnership expands Securonix's global presence and will allow Skyone to power its next-generation security operations center (SOC) services, embracing the latest innovations in agentic AI and displacing outdated legacy solutions. Driven by the need for greater operational flexibility, optimized resource utilization, and first-class service quality for enterprise clients, the partnership between Securonix and Skyone replaces Microsoft Sentinel as the legacy technology, promising a robust and scalable security analytics platform, enabling smarter, faster, and more proactive security operations in Latin America and beyond. "We are proud to welcome Skyone as a strategic partner in the LATAM region," said Brian Mory, SVP of Sales at Securonix. "Together, we are accelerating innovation in the SIEM market and delivering next-generation SIEM, SOAR, and UEBA capabilities as-a-service to help customers modernize their security operations." The partnership comes on the heels of Securonix's acquisition of ThreatQuotient, allowing modernization of security operations through uniting internal and external threat intelligence with real-time analytics and agentic AI. Now, through the partnership with Skyone, Securonix is able to deliver a platform that supports advanced threat detection, UEBA, and automation, all while meeting the operational needs of a managed security services provider. For more information or to inquire about partnering with Securonix, please visit: About Securonix Securonix is leading the transformation of cybersecurity with the industry's first Unified Defense SIEM powered by agentic AI, purpose-built to decide and act across the threat lifecycle with a human-in-the-loop philosophy. Built for scale, precision, and speed, our cloud-native platform empowers global enterprises to shift from reactive security to proactive, autonomous operations. Recognized as a Leader in the Gartner® Magic Quadrant™ for SIEM and a Customers' Choice by Gartner Peer Insights™, Securonix is driving the next era of intelligent, autonomous security operations. Learn more at View source version on Contacts Media Contact Sean FergusonSenior Manager, Brand & Communications, Securonixsferguson@ Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
