Ding dong, the 2010s called – they want their TTPs back. Amazing how you can still completely own companies using decade-old techniques: - PSExec for RDP prep - Mimikatz dumped in C:\PerfLogs - LOLbin-fueled network recon - A scheduled task beaconing to some shady IP It still works. Because outside our infosec echo chamber, most orgs are stuck in 2005 – one antivirus, a firewall, and a prayer. Meanwhile, we’re debating AI-driven XDR orchestration with autonomous response in the cloud. Reality check: most businesses https://www.linkedin.com/posts/huntress-labs_deploying-managed-edr-during-an-active-intrusion-activity-7330289416453722112-hc1j