Hunt & Hackett

𝐈𝐧𝐭𝐫𝐨𝐝𝐮𝐜𝐢𝐧𝐠 𝐨𝐮𝐫 𝐀𝐮𝐭𝐨𝐦𝐚𝐭𝐢𝐜 𝐓𝐫𝐢𝐚𝐠𝐞 (𝐀𝐮𝐭𝐨𝐭𝐫𝐢𝐚𝐠𝐞) 𝐅𝐫𝐚𝐦𝐞𝐰𝐨𝐫𝐤    We’ve been working behind the scenes on our #Autotriage Framework, and we’re excited to finally share it with you! This powerful framework is already making a real difference in our Security Operations Center (#SOC). Here’s how:   👉 𝐖𝐨𝐫𝐤𝐥𝐨𝐚𝐝 𝐫𝐞𝐝𝐮𝐜𝐭𝐢𝐨𝐧: By automating investigations and reducing false positives, Autotriage has allowed us to cut down on repetitive tasks. Over the past 6 months, we’ve reduced our alert workload by 70,000 alerts, freeing up analysts to focus on higher-priority security incidents.  👉 𝐒𝐭𝐫𝐞𝐚𝐦𝐥𝐢𝐧𝐞𝐝 𝐢𝐧𝐯𝐞𝐬𝐭𝐢𝐠𝐚𝐭𝐢𝐨𝐧𝐬: Autotriage helps analysts collect critical information faster, making threat response quicker and more efficient.  👉 𝐀𝐮𝐭𝐨𝐦𝐚𝐭𝐢𝐜 𝐚𝐥𝐞𝐫𝐭 𝐜𝐥𝐨𝐬𝐮𝐫𝐞𝐬: When fully utilized, the system can even automatically close certain alerts, saving time and improving the overall effectiveness of our security operations.    Watch the video below to hear our SOC analysts break down how it works and the impact it’s making ⬇️ Credits to Jelle Hol, Kim Luuring, Stephan Meza, Rebecca Lumley, Sara Sorici for bringing this video to life!

Happy Holidays from all of us at Hunt & Hackett! ✨ As the year comes to a close, we wanted to share some special moments from our Christmas celebration. This year, we visited the Escher in Het Paleis Museum in The Hague, where art played tricks on our minds and sparked some interesting conversations. After a private tour that left us questioning what’s real, we ended the evening with a cozy dinner, enjoying good food and even better company. Celebrating in a space filled with impossible staircases and endless loops is a rare experience. Yet, it felt perfectly suited for our team that thrives on tackling challenges together. Here’s to bringing that same energy and teamwork into 2025. Wishing you all a great start to the new year!

🎄Our final newsletter of the year is here!   As we wrap up 2024, we celebrate being nominated for #HackerNoon Startups of the Year 2024 and achieving SOC 2 Type II compliance—two key milestones in our growth.   This edition features insights on the threat actor #CozyBear, #DataRetention challenges, and our SQL-implementation of choice: a Data Build Tool. We also highlight findings from the #CSBN2024 report and introduce our upcoming #CyberConnect session on detecting advanced attacks. Make sure to check it out!

Excited to see Monta sharing their story in this piece by Warehouse Totaal! 🚀 As a fast-growing e-fulfilment company, Monta recognized that they were becoming a bigger target for hackers and set out to secure their digital environment. With the help of Hunt & Hackett, they transitioned from a prevention-focused strategy to a more proactive, 'assume breach’ approach with Managed Detection and Response (#MDR). "𝘛𝘩𝘢𝘯𝘬𝘴 𝘵𝘰 𝘏𝘶𝘯𝘵 & 𝘏𝘢𝘤𝘬𝘦𝘵𝘵, 𝘐 𝘤𝘢𝘯 𝘴𝘭𝘦𝘦𝘱 𝘮𝘰𝘳𝘦 𝘱𝘦𝘢𝘤𝘦𝘧𝘶𝘭𝘭𝘺 𝘢𝘵 𝘯𝘪𝘨𝘩𝘵, 𝘬𝘯𝘰𝘸𝘪𝘯𝘨 𝘰𝘶𝘳 𝘥𝘪𝘨𝘪𝘵𝘢𝘭 𝘦𝘯𝘷𝘪𝘳𝘰𝘯𝘮𝘦𝘯𝘵𝘴 𝘢𝘳𝘦 𝘤𝘰𝘯𝘴𝘵𝘢𝘯𝘵𝘭𝘺 𝘮𝘰𝘯𝘪𝘵𝘰𝘳𝘦𝘥 𝘢𝘯𝘥 𝘢𝘯𝘺 𝘱𝘰𝘵𝘦𝘯𝘵𝘪𝘢𝘭 𝘢𝘵𝘵𝘢𝘤𝘬𝘴 𝘢𝘳𝘦 𝘥𝘦𝘢𝘭𝘵 𝘸𝘪𝘵𝘩 𝘪𝘮𝘮𝘦𝘥𝘪𝘢𝘵𝘦𝘭𝘺." Monta sets a great example of how businesses in the #logistics sector can prioritize security while scaling their operations. Check out the full story here: https://lnkd.in/gYuYbjfw

Great job Tom Moester!

Last week, our own Tom Moester had the privilege of presenting at the end-of-year dinner hosted by the CISO Council of the Dutch government. Tom shared insights from a recent threat analysis commissioned by the Municipality of The Hague in preparation for the #NATO Summit 2025. His presentation covered key threat scenarios relevant to the Summit, focusing on nation state-backed groups, as well as practical steps organizations can take to increase their #resilience to such attacks. It’s always a pleasure to see our team members sharing their expertise, and we’re proud to have had the opportunity to support such an important initiative.

New #blogpost! With the #NIS2 Directive now in force, organizations across the EU face stricter #cybersecurity and compliance requirements. One of the biggest challenges? Managing #DataRetention for extended periods to support root cause investigations without incurring skyrocketing costs. In our latest blog, we dive into: 👉 The Data Retention Challenge: Meeting NIS2’s extended data retention requirements often forces organizations to balance compliance with managing operational expenses 👉 Incident Reporting Timelines: Why data retention and analysis capabilities are critical to meeting the 24-hour, 72-hour, and 1-month reporting deadlines 👉 Our Solution: How Hunt & Hackett’s MDR service supports compliance, cost-efficiency and forensic readiness with an "Assume Breach" approach For organizations navigating NIS2, our #MDR service offers a forensic-driven solution—without the hidden costs. Read the full blog to learn how we help you stay compliant, manage costs, and strengthen your security posture. ⬇ https://lnkd.in/dhsGzDkS

We’re excited to share that Hunt & Hackett has successfully achieved SOC 2 Type II compliance, with Securance as our independent auditor! 🎉   This means our security practices and policies meet the highest industry standards, consistently applied and rigorously maintained. We’re proud to report that our audit passed with zero exceptions! ✅   What does this mean? A SOC 2 Type II audit provides a thorough evaluation of the design, implementation, and operating effectiveness of our controls over a defined period (at least six months). This audit guarantees: ☑️ Suitability and reliability: Our security and availability processes are designed to safeguard your business. ☑️ Proven operational effectiveness: Our controls aren’t just well-documented—they’re consistently executed in practice. ☑️ Flawless results: The audit was passed with zero exceptions, meeting all criteria without findings.

𝐂𝐨𝐮𝐧𝐭𝐫𝐲 𝐓𝐡𝐫𝐞𝐚𝐭 𝐏𝐫𝐨𝐟𝐢𝐥𝐞: 𝐑𝐮𝐬𝐬𝐢𝐚 The Russian Federation’s cyber threat landscape is defined by a potent combination of state-sponsored actors and organized crime groups working in tandem to achieve strategic objectives. With 74 Advanced Persistent Threats (#APTs), leveraging 278 Techniques, Tactics, and Procedures (#TTPs) and 579 attack tools, Russia’s cyber capabilities are both extensive and highly advanced. Their operations target critical sectors across the globe, including #technology, #government, #industrial, and #defense industries. Read our comprehensive profile to uncover: 👉 An in-depth look at Russia’s advanced cyber capabilities 👉 Geopolitical relations and strategic motives 👉 Key strengths, vulnerabilities, opportunities, and threats 👉 Insights into significant cyber campaigns and operational methods Dive into the full report available in our Members’ Portal to arm your team with the critical insights required to navigate and counter the advanced cyber strategies employed by the Russian Federation. Sign up for the Members' Portal: https://lnkd.in/dXZQnttp Direct (member) link: https://lnkd.in/erJxXqF8

Even though the holidays are just around the corner, it seems that hackers aren’t taking a break. Recently, a #ransomware attack on Blue Yonder, a third-party provider for companies like Starbucks, Walgreens, and Morrisons, disrupted supply chains in the US and UK.   The timing of the attack was likely no coincidence - it struck just before Thanksgiving, a critical period for Blue Yonder’s customers, many of whom are large supermarket chains. This is a common tactic used by cybercriminals, who exploit periods of peak demand in the hopes that victims will feel compelled to pay the ransom quickly. Adding to this, we know that cybercriminals plan attacks when an organization’s defenses may be lower, such as during weekends or holidays. In fact, as many as 86% of ransomware attacks are launched outside the victim organization's usual business hours. With Christmas on the way, this case serves as an important reminder to consider your organization’s ability to #detect and #respond to security incidents while operating with reduced capacity. Want to learn more about safeguarding your company’s defenses during the holiday season? Check out our Managed Detection and Response (MDR) and Incident Response (IR) services at the link below. 👉 MDR: https://lnkd.in/d3NpGAz8 👉 IR: https://lnkd.in/eYY4xYyT https://lnkd.in/eCCkFcDZ