Windows EDR - Ransomware Canaries Improvements | Voters

Windows EDR - Ransomware Canaries Improvements

this quarter

James Mason | PMM @ Huntress

Updating capabilities we use to see Ransomware, increasing telemetry pull for Ransomware attacks and add in correlation to have a better view into how, when and where an attack started from

February 21, 2025

Bjørn Mathisen

I assume a process implicated in a ransomware detection on one machine will be identified and then shut down across all hosts?

James Mason | PMM @ Huntress

marked this post as

this quarter