John Mancini

Director, Product Management

John Mancini leads the product management of machine learning-based threat detection algorithms at Vectra. He is a product-driven technologist with extensive experience research, development and design of software backed by machine learning and AI. Previously, John held the position of lead data scientist and received a patent for an improved method, system, and computer program product for identifying malicious payload exchanges which may be associated with payload injection or root-kit magic key usage.

‍

Post from

John Mancini

Vectra AI Platform Helps Microsoft Customers Strengthen Hybrid and Multi-Cloud Defense to Combat Non-Stop Cyber Attacks

Discover how Vectra AI strengthens Microsoft hybrid and multi-cloud defenses, filling gaps in native security tools to combat evolving cyber threats.

How to Protect Against a Supply Chain Compromise: Takeaways From the XZ Utils Backdoor

Learn more about the XZ Utils backdoor vulnerability and how to find out if your organization has been exposed.

Vectra ITDR finds identity attacks that other tools can’t, protect all of your accounts with less effort

Identity is the center of the modern enterprise and the modern attack. Attackers abuse identities in the data center and the cloud to access sensitive data

Untitled Goose Tool Takes Flight: Azure AD and M365 Account Compromises

Recently, CISA released a new open-source tool named the Untitled Goose Tool that helps organizations investigate threats to Azure AD, M365 and Azure.

Controlling Cyberattacks with PowerShell Shouldn't Mean Moving on Without it

Cybersecurity authorities from the United States, New Zealand, and the United Kingdom have released a joint Cybersecurity Information Sheet (CIS) that recommends proper configuration and monitoring of PowerShell to address the recurrence of the scripting language's use in cyberattacks.

Azure AD: Users Are Bypassing Your MFA

In order to help security teams validate the effectiveness of their Azure AD security controls and stop future attacks, the Vectra platform continuously monitors user activity and reveals instances of users bypassing multi-factor authentication (MFA) and other preventative controls.

Azure AD Attackers Beware—Vectra Sees You

Vectra Cognito Azure AD Privilege Anomaly Detection identifies account takeovers in Azure AD, alerting teams to prevent attacks on mission-critical apps.

Hafnium Attack Exploits On-premise Microsoft Exchange Servers

The Hafnium campaign is targeting Microsoft Exchange Servers by leveraging several zero-day exploits and allows attackers to bypass authentication, including MFA to access e-mail accounts. Read more about hot to detect and stop the attack with Vectra Cognito.

Plain and Simple: You Need Detection Coverage for Azure AD

As witnessed by the SolarWinds attack, compromising a single Azure AD account gives an attacker access to multiple SaaS apps, including Microsoft Office 365. This single point has made it critical for organizations to be able to detect and respond to attacks from Azure AD.

Vectra Threat Intelligence: The Icing on the Cake

AI-based detections are great at identifying attacker behaviors while threat intelligence provides fast, labeled coverage of known threats. Adding threat intelligence extends the coverage of AI-based detections to give you the most durable coverage and early understanding of threats.