John Mancini

Product Management

John Mancini leads the product management of machine learning-based threat detection algorithms at Vectra. He is a product-driven technologist with extensive experience research, development and design of software backed by machine learning and AI. Previously, John held the position of lead data scientist and received a patent for an improved method, system, and computer program product for identifying malicious payload exchanges which may be associated with payload injection or root-kit magic key usage.

All blog posts from this author

Threat detection

Azure ADの検知が必須である単純明快な理由

February 4, 2021
Read blog post
Threat detection

Azure AD Security Solutions - Azure AD Detection Coverage

February 4, 2021
Read blog post
Threat detection

Azure AD Attackers Beware - Vectra Sees You

May 6, 2021
Read blog post
Breach

Hafnium Attack Exploits On-premise Microsoft Exchange Servers

March 4, 2021
Read blog post
Artificial Intelligence

Vectra Threat Intelligence: the Icing on the Cake

August 6, 2020
Read blog post
Artificial Intelligence

Vectra Threat Intelligence:脅威インテリジェンスでさらなる高みへ

August 6, 2020
Read blog post

John Mancini

Product Management

John Mancini leads the product management of machine learning-based threat detection algorithms at Vectra. He is a product-driven technologist with extensive experience research, development and design of software backed by machine learning and AI. Previously, John held the position of lead data scientist and received a patent for an improved method, system, and computer program product for identifying malicious payload exchanges which may be associated with payload injection or root-kit magic key usage.

Posts from

John Mancini

May 6, 2021
|
By
John Mancini
Azure AD Attackers Beware—Vectra Sees You

The Vectra Cognito Azure AD Privilege Anomaly Detection is a radical step forward when detecting account takeover events targeting Azure AD to gain access to mission-critical SaaS applications. With it, teams are alerted, and attacks can be stopped before they cause harm.

Read More
March 4, 2021
|
By
John Mancini
Hafnium Attack Exploits On-premise Microsoft Exchange Servers

The Hafnium campaign is targeting Microsoft Exchange Servers by leveraging several zero-day exploits and allows attackers to bypass authentication, including MFA to access e-mail accounts. Read more about hot to detect and stop the attack with Vectra Cognito.

Read More
February 4, 2021
|
By
John Mancini
Plain and Simple: You Need Detection Coverage for Azure AD

As witnessed by the SolarWinds attack, compromising a single Azure AD account gives an attacker access to multiple SaaS apps, including Microsoft Office 365. This single point has made it critical for organizations to be able to detect and respond to attacks from Azure AD.

Read More
February 4, 2021
|
By
John Mancini
Azure ADの検知が必須である単純明快な理由

単一のAzureADアカウントを侵害することで、攻撃者はMicrosoftOffice 365を含む複数のSaaSアプリケーションにまたがる大量のデータにアクセスすることができてしまうことをSolarWindsへの攻撃から学んだかと思います。AzureADへの侵害をどのように検知および対応できるのかご紹介します。

Read More
August 6, 2020
|
By
John Mancini
Vectra Threat Intelligence:脅威インテリジェンスでさらなる高みへ

AIベースの検出は、未知の攻撃者や既知の攻撃者の振る舞いを識別するのに優れており、一方で、脅威インテリジェンスは既知の脅威を迅速にラベル付けしてカバーします。

Read More
August 6, 2020
|
By
John Mancini
Vectra Threat Intelligence: The Icing on the Cake

AI-based detections are great at identifying attacker behaviors while threat intelligence provides fast, labeled coverage of known threats. Adding threat intelligence extends the coverage of AI-based detections to give you the most durable coverage and early understanding of threats.

Read More