In October 2024, we enhanced security by implementing Agent Tamper Protection, which blocks local agent uninstallation to prevent attackers from disabling defenses.

We’ve since updated the Huntress dashboard to remove the ability to indefinitely turn Tamper Protection On/Off, limiting Tamper Protection overrides to 4 hours. This ensures temporary adjustments don’t leave systems vulnerable, addressing risks of misconfiguration.

For more information on Tamper Protection, please see this Support Article.

Janel's groundbreaking invention could change the world, but Quincy's open-source research skills and big ambitions might just change her future.

Learning Objectives:

We've made an update to your Incident Reports! Containment actions are now going to show within the Remediations tab of an Incident, allowing you visibility into the status and the ability to track the progress of any actions taken, such actions as

This update will streamline adding future remediations for EDR, ITDR and SIEM, increasing the product efficiency and effectiveness against future threats.

Our SOC has observed a rise in PDF based phishing attacks in the wild. These new phishing simulations mimic that tradecraft by including an attachment with a bait-link (normal link or QR Code) inside.

Tina is starting a new internship for the mega celebrity, Joshhh, and she's hoping that generative AI will have him singing her praises.

Learning Objectives:

We're making NEW trial signups easier:

These changes are meant to make it drop-dead easy to start a trial, without compromising quality or security.

The dashboard page with the phishing over time graph is now in general availability and available to all customers and partners. This page helps admins observe improvement in avoiding simulated compromise over time based on attempt number.

Partners have asked for ways to rename "Huntress Managed Learning - <month> <year>" to something that best reflects their own brand. Now they can! When they go to the Managed Learning Plan page, they can now hit the gear icon and rename future assignments.

We also have a beta feature we can enable to customize the time of day that learning plans launch to best support international audiences in EMEA and ANZ.

All Managed EDR partners can now request SOC Support for critical EDR incidents right from the Huntress Portal. This feature allows partners to communicate via a live chat - or request a callback from the Huntress SOC Support - via a button on the top right of all Managed EDR critical incident reports.

Feature Details:

If you select the callback option, all you need to do is input your phone number, name, email, and a brief description of what you need assistance with - the Huntress SOC Support team will call you directly to address your concerns or questions around the associated critical incident report. Each organization in an account is limited to one phone support request at a time.

We're excited to announce that we've enhanced our security by strengthening the protection of endpoints with Huntress. This improvement prevents easy uninstallation of the Huntress Agent or tampering with any of its components.

Moving forward, uninstalling the Agent can only be done through the Huntress Dashboard or by turning off the Tamper Protection feature in the Dashboard, then uninstalling it locally or via RMM tools.

For detailed instructions on enabling this feature or for more information, please refer to our Support Documentation here.