Cyberattack Bulletins

Learn how attackers use metadata search engines like Shodan and FOFA to identify vulnerable systems and build lists of targets.

Safeguard your federal network from state-sponsored APTs and internal vulnerabilities with advanced NDR with purpose-built AI.

Attackers abuse EV certificates to sign malware and evade detection. Learn how they steal, use, and automate trusted code signing for ransomware.

A concise, real-world case study showcasing agile incident response and tailored threat detection for the modern network.

Attackers bypass MFA using non-interactive sign-ins. Learn how to detect and stop credential-based threats before they escalate.

Ghost ransomware strikes fast, exploiting vulnerabilities and encrypting data within hours—learn how AI can stop it before it’s too late.

Learn how to detect and mitigate ransomware attacks targeting AWS S3 buckets. Discover best practices and how Vectra AI can help secure your cloud.

Learn why microsegmentation alone can't fully secure your network and how combining it with advanced threat detection enhances your protection.

Learn how attackers exploit the NTLM zero-day vulnerability and how Vectra AI can protect your organization from credential theft.

Discover why 91% of customers prefer Vectra AI over Darktrace for accurate attack signal intelligence and superior cybersecurity solutions.

Salt Typhoon targets global telcos. Learn how improved visibility, hardening, and Vectra AI help defend against these advanced threats.

Discover why traditional defenses fall short and how continuous offensive security testing can help your organization detect and respond to cyber attacks.

Learn how zero-day attacks on network edge devices bypass traditional defenses and why NDR is essential for detecting and stopping post-compromise threats.

Protect yourself this holiday season from malicious websites. Learn how hackers deceive shoppers and how to stay secure online.

Discover how Vectra AI strengthens Microsoft hybrid and multi-cloud defenses, filling gaps in native security tools to combat evolving cyber threats.

Learn how Vectra AI enhances threat detection in Microsoft Azure, overcoming challenges native tools miss for better threat detection and response.

Planning to attend a cybersecurity event? Stay secure with these 19 essential tips to protect yourself from getting hacked

Ed Amoroso, founder and CEO of TAG Infosphere Interviews Mark Wojtasiak, VP of Product at Vectra AI where they discuss how the right approach to AI can stop today’s hybrid attacks.

Learn more about the XZ Utils backdoor vulnerability and how to find out if your organization has been exposed.

Unrivaled signal clarity and rapid response can help you protect your complex IT environment.

Recent enhancements to the Vectra AI Platform include added detection coverage, the industry's first global open MXDR service and key investigation and response controls.

Identity is the center of the modern enterprise and the modern attack. Attackers abuse identities in the data center and the cloud to access sensitive data

Explore a real-world Amazon account takeover scenario underscoring the vulnerabilities in SMS-based MFA and advocating for more robust security measures.

Demystifying hybrid attacks begins with seeing that all attack vectors comprise a single, hybrid attack surface, all attacks are hybrid attacks and end with signal clarity.

Innovative XDR capabilities can deliver the ML/AI capabilities your security team needs to outpace expanding AI-enhanced threats.

The security landscape is plagued by tools that cause more inefficiencies, more ineffectiveness, and more breaches than ever.

In my last post, we talked about the importance of security testing as one of the best ways to improve defenders’ skills and expertise and build confidence that ongoing security investments continue to provide ROI.

The best ways to improve defenders’ skills and expertise and build confidence that ongoing security investments continue to provide ROI.

Insight and key takeaways from Gartner Security and Risk Summit 2023

Explore the challenges confronting Security Operations Center (SOC) teams, addressing the surge in alert volumes and advocating for a redefined perspective on threat detection effectiveness.

In this blog, we explore the true purpose of Cybersecurity Awareness Month and why it is important for end users to understand their role in protecting organizations. We delve into the "Defenders' Dilemma" and shed light on the challenges faced by cybersecurity professionals. Discover how attackers prey on human nature and the impact of their actions on defenders' workload and well-being. Join us in advocating for empathy and teamwork in the fight against cyber threats.

Hooray! It’s Cybersecurity Awareness Month – a security marketer's dream. An entire month dedicated to building awareness and educating the public on adopting safe cyber practices.

Unveiling the Vectra AI Platform: Your pathway to fortified cybersecurity. Co-created with security pioneers, this innovative platform offers integrated Attack Signal Intelligence for unmatched resilience, SOC modernization, and agile response to advanced threats.

Recently, CISA released a new open-source tool named the Untitled Goose Tool that helps organizations investigate threats to Azure AD, M365 and Azure.

Last week I attended the Gartner Security and Risk Summit in London. The theme of the summit was Accelerating the Evolution of Security: Reframe and Simplify. From the very first keynote, Gartner laid down the gauntlet. "Change is needed and we must stop doing what we have always done and start learning from our mistakes." It is this very sentiment that set the tone for the show.

We at Vectra think that SOC teams need to focus on 3 challenges to stay ahead of cyberattacks. Coverage, Clarity Control

Cybersecurity authorities from the United States, New Zealand, and the United Kingdom have released a joint Cybersecurity Information Sheet (CIS) that recommends proper configuration and monitoring of PowerShell to address the recurrence of the scripting language's use in cyberattacks.

How to move cybersecurity forward? At the core of this discussion, we always find the same core values. We at Vectra live up to the 9 C's.

In order to help security teams validate the effectiveness of their Azure AD security controls and stop future attacks, the Vectra platform continuously monitors user activity and reveals instances of users bypassing multi-factor authentication (MFA) and other preventative controls.

Vectra Cognito Azure AD Privilege Anomaly Detection identifies account takeovers in Azure AD, alerting teams to prevent attacks on mission-critical apps.

The Hafnium campaign is targeting Microsoft Exchange Servers by leveraging several zero-day exploits and allows attackers to bypass authentication, including MFA to access e-mail accounts. Read more about hot to detect and stop the attack with Vectra Cognito.

As witnessed by the SolarWinds attack, compromising a single Azure AD account gives an attacker access to multiple SaaS apps, including Microsoft Office 365. This single point has made it critical for organizations to be able to detect and respond to attacks from Azure AD.

AI-based detections are great at identifying attacker behaviors while threat intelligence provides fast, labeled coverage of known threats. Adding threat intelligence extends the coverage of AI-based detections to give you the most durable coverage and early understanding of threats.