Stay ahead with the latest in Threat Hunting techniques, proactive cyber defense strategies, and expert insights into detecting hidden threats.
Search across headline titles and summaries.
Background for this topic.
Threat Hunting is the proactive practice of searching through networks and datasets to detect and isolate advanced threats that evade existing security solutions. In the context of information security, it involves a combination of manual and automated techniques to identify malicious activities that might be lurking undetected within an environment. Skilled security analysts, leveraging their understanding of the network and the current threat landscape, use various tools and methods to hypothesize about potential security breaches, investigate anomalies, and validate suspicious events.
Unlike traditional security measures that rely on alerts or signatures of known threats, threat hunting assumes that the organization has already been compromised and works to uncover stealthy attacks. Therefore, it actively seeks out new patterns of behavior and uses threat intelligence to anticipate the tactics, techniques, and procedures (TTPs) of adversaries. This proactive approach is essential for detecting advanced persistent threats (APTs), reducing dwell time of attackers, and enhancing the overall resilience of the organization's security posture.
Weekly headline count for the current query.
New Memo Replaces SolarWinds-Era Rules With Risk-Based ModelThe White House issued a new memo replacing SolarWinds-era logging mandates with a narrower framework focused on risk, threat hunting and forensic readiness as agencies confront faster artificial intelligence-enabled intrusions across federal networks.
Driftnet Acquisition Adds Real-Time Visibility Into Exposed Assets and AI RisksSecurityScorecard acquired internet reconnaissance startup Driftnet to expand real-time visibility into hidden infrastructure, exposed assets and AI-driven third-party risks while strengthening threat hunting, attribution and internet-scale intelligence capabilities.
It’s the first significant cybersecurity-related announcement under Director of National Intelligence Tulsi Gabbard. The post ODNI tackles AI, threat hunting, app cybersecurity in year-one tech review appeared first on CyberScoop.
JPMorganChase uses digital fingerprints and digital twins to spot online attackers and malicious behaviors while also reducing pesky false alerts.
AI helped send weekly threat signal count from 80 million to 400 billion, then helped response time shrink from two days to 30 minutes Australia’s Commonwealth Bank built its own agentic AI threat hunting tools, because vendors are too slow to develop tools that can cope with emerging AI-powered threats, according to General Manager of Cyber Defence Operations Andrew Pade.…
My objectiveThe role of NDR in SOC workflowsStarting up the NDR systemHow AI complements the human responseWhat else did I try out?What could I see with NDR that I wouldn’t otherwise?Am I ready to be a network security analyst now? My objective As someone relatively inexperienced with network threat hunting, I wanted to get some hands-on experience using a network detection and response (
Nearly $270M Cut From CISA Despite Mounting Foreign CyberthreatsCongress is proposing cuts of nearly $270 million from the Cybersecurity and Infrastructure Security Agency's budget for fiscal year 2026, reducing funding for threat hunting and vulnerability management as officials warn foreign adversaries are escalating cyber operations targeting U.S. systems.
Learn what threat hunting is, why it matters for your organization, and how proactive detection differs from traditional security monitoring.
In this blog entry, Trend™ Research provides a comprehensive breakdown of GhostPenguin, a previously undocumented Linux backdoor with low detection rates that was discovered through AI-powered threat hunting and in-depth malware analysis.
Microsoft is working to mitigate an ongoing incident that has been blocking access to some Defender XDR portal capabilities for the past 10 hours. [...]
Every October brings a familiar rhythm - pumpkin-spice everything in stores and cafés, alongside a wave of reminders, webinars, and checklists in my inbox. Halloween may be just around the corner, yet for those of us in cybersecurity, Security Awareness Month is the true seasonal milestone
The UK’s National Cyber Security Centre has released new guidance to help firms improve observability and threat hunting
AI is transforming cybersecurity—from detecting phishing and insider threats to accelerating response. See how Waziuh, the open-source XDR and SIEM, integrates AI to turn raw security data into actionable insights and smarter threat hunting. [...]
Security leaders are embracing AI for triage, detection engineering, and threat hunting as alert volumes and burnout hit breaking points
Funding Supports Threat Hunting, Natural Language to Replace Legacy DetectionVega aims to replace patchwork AI integrations with an analytics layer that enables real-time, natural language detection across distributed data. Backed by Accel, the company will double headcount, improve detection tuning and reduce false positives without a SIEM rip-and-replace required.
The more you hunt, the more you learn.
Invest in Preparation and Training During the Calmer Times Between AttacksCyberattacks may make headlines, but the daily discipline of security - patching routines, threat hunting, tabletop exercises and user education campaigns - is where resilience is forged. These tasks might not feel heroic, but they build technical and human infrastructure to handle the next crisis.
Invest in Preparation and Training During the Calmer Times Between AttacksCyberattacks may make headlines, but the daily discipline of security - patching routines, threat hunting, tabletop exercises and user education campaigns - is where resilience is forged. These tasks might not feel heroic, but they build technical and human infrastructure to handle the next crisis.
The addition of SnapAttack, a startup incubated by Booz Allen Hamilton’s Darklabs, will enhance Splunk with accelerated SIEM migration and proactive threat hunting.