HomeAuthors
John Hammond
Glitch effectGlitch effectGlitch effect
Generic Headshot Profile
Principal Security Researcher
Huntress

John Hammond

About

Hacker. Cybersecurity researcher, educator, and content creator. Previously a Department of Defense Cyber Training Academy instructor. Teacher of the Cyber Threat Emulation.

As part of the Huntress team, he spends his days making hackers earn their access and helping tell the story.

John is also an active voice in the community, sharing his experience through these Huntress on-demand webinars: 

Glitch effectGlitch effect

Posts by this author

Turning TTPs into CTF Challenges: Huntress CTF 2024 Retro

Turning TTPs into CTF Challenges: Huntress CTF 2024 Retro

November 12, 2024
Threat Advisory: Possible AnyDesk Stolen Code Signing Certificate

Threat Advisory: Possible AnyDesk Stolen Code Signing Certificate

February 2, 2024
Qakbot Malware Takedown and Defending Forward

Qakbot Malware Takedown and Defending Forward

August 30, 2023
MOVEit Transfer Critical Vulnerability CVE-2023-34362 Rapid Response

MOVEit Transfer Critical Vulnerability CVE-2023-34362 Rapid Response

June 1, 2023
3CX VoIP Software Compromise & Supply Chain Threats

3CX VoIP Software Compromise & Supply Chain Threats

March 30, 2023
Everything We Know About CVE-2023-23397

Everything We Know About CVE-2023-23397

March 17, 2023
Veeam Backup & Replication CVE-2023-27532 Response

Veeam Backup & Replication CVE-2023-27532 Response

March 13, 2023
Critical Vulnerability Disclosure: ConnectWise/R1Soft Server Backup Manager Remote Code Execution & Supply Chain Risks

Critical Vulnerability Disclosure: ConnectWise/R1Soft Server Backup Manager Remote Code Execution & Supply Chain Risks

October 31, 2022
New 0-Day Vulnerabilities Found in Microsoft Exchange

New 0-Day Vulnerabilities Found in Microsoft Exchange

September 29, 2022
Rapid Response: Microsoft Office RCE - “Follina” MSDT Attack

Rapid Response: Microsoft Office RCE - “Follina” MSDT Attack

May 30, 2022
Bring Your Own Command & Control (BYOC2)

Bring Your Own Command & Control (BYOC2)

April 26, 2022
Targeted APT Activity: BABYSHARK Is Out for Blood

Targeted APT Activity: BABYSHARK Is Out for Blood

March 1, 2022
Critical RCE Vulnerability: log4j - CVE-2021-44228

Critical RCE Vulnerability: log4j - CVE-2021-44228

December 10, 2021
Critical RCE Vulnerability Affecting a Java Loggin Package

Critical RCE Vulnerability Affecting a Java Loggin Package

December 10, 2021
Vulnerabilities and Information Disclosure in MSP Survey Software

Vulnerabilities and Information Disclosure in MSP Survey Software

October 28, 2021
Threat Advisory: Hackers Are Exploiting CVE-2021-40444

Threat Advisory: Hackers Are Exploiting CVE-2021-40444

September 9, 2021
Bullseye: A Story of a Targeted Cyberattack

Bullseye: A Story of a Targeted Cyberattack

August 24, 2021
Microsoft Exchange Servers Still Vulnerable to ProxyShell Exploit

Microsoft Exchange Servers Still Vulnerable to ProxyShell Exploit

August 19, 2021
The Hunt to Find Origins of Kaseya's VSA Mass Ransomware Incident

The Hunt to Find Origins of Kaseya's VSA Mass Ransomware Incident

July 20, 2021
Rapid Response: Mass MSP Ransomware Incident

Rapid Response: Mass MSP Ransomware Incident

July 3, 2021
Critical Vuln.: PrintNightmare Exposes Windows Servers to RCE

Critical Vuln.: PrintNightmare Exposes Windows Servers to RCE

June 30, 2021
ThreatOps Analysis: Keyed Malware

ThreatOps Analysis: Keyed Malware

June 15, 2021
Discovering a Ransomware Remedy in the Wild

Discovering a Ransomware Remedy in the Wild

June 8, 2021
From PowerShell to Payload: An Analysis of Weaponized Malware

From PowerShell to Payload: An Analysis of Weaponized Malware

May 4, 2021
Abusing Ngrok: Hackers at the End of the Tunnel

Abusing Ngrok: Hackers at the End of the Tunnel

March 16, 2021
Rapid Response: Mass Exploitation of On-Prem Exchange Servers

Rapid Response: Mass Exploitation of On-Prem Exchange Servers

March 3, 2021
What Is Human-Powered Threat Hunting?

What Is Human-Powered Threat Hunting?

March 2, 2021
Zero-Day Vulnerabilities in Platforms Could Leave MSPs Exposed

Zero-Day Vulnerabilities in Platforms Could Leave MSPs Exposed

February 23, 2021
Malware Under The Microscope: Manual Analysis

Malware Under The Microscope: Manual Analysis

January 12, 2021
Supply Chain Exploitation of SolarWinds Orion Software

Supply Chain Exploitation of SolarWinds Orion Software

December 14, 2020
Tried and True Hacker Technique: DOS Obfuscation

Tried and True Hacker Technique: DOS Obfuscation

November 24, 2020
Hiding in Plain Sight: Part 2

Hiding in Plain Sight: Part 2

August 20, 2020
Glitch effect