Huntress Labs, the security vendor known to date for helping MSPs spot hidden intruders in end user environments, has introduced ransomware detection and external reconnaissance services.
The new offerings, which are available now at no extra cost to users of the company’s original “persistent foothold” solution, are the leading edge of a larger, more ambitious strategy to build a continually growing security platform that evolves over time in response to changing threats.
“We’re going to keep adding services where hackers go,” says Huntress CEO Kyle Hanslovan. “If they go to the cloud, we’ll add a service to go to the cloud. If they’re doing bad stuff to backups, we’ll add some stuff to protect the backups.”
The down payment on that vision announced today includes a solution that uses fake files Huntress calls “ransomware canaries” to identify an attack in progress, much the way coal miners once employed canaries as an early warning system for carbon monoxide poisoning.
“As soon as these fake files get encrypted, we’re going to be able to take action,” Hanslovan says, by notifying users of the attack and providing guidance on remediation measures. Integration with third-party BDR solutions that would allow the system to restore encrypted data automatically is on the product’s roadmap for the future.
The external reconnaissance solution, meanwhile, continuously monitors an end user’s attack surface for vulnerabilities, such as the presence of an open RDP port or the absence of a policy requiring complex passwords. “There’s a lot of enterprise tools dedicated to doing this for you, but they’re all expensive,” Hanslovan notes.
Also unveiled today are two tools designed to help MSPs acquire and retain customers more effectively. The first, which Huntress calls its partner enablement service, is a portal that channel pros can employ to plan and execute lead generation campaigns using professionally made, white-labeled marketing resources.
The other new service generates reports designed to help MSPs keep the clients they already have by providing a plain-English rundown of everything that’s happened behind the scenes in recent weeks to maintain security.
“When construction companies haven’t had a safety incident in 200 days, they don’t stop wearing hard hats, but oddly enough in the SMB [segment] when you haven’t had a breach in 30, 60, 90 days, people want to go crazy and remove the firewall and get rid of your two factor [authentication] and all the other things that are keeping you safe,” Hanslovan says. Documenting the hidden but essential work involved in preventing breaches will make talking customers out of moves likes that easier, he adds.
There is no added charge to partners for using any of the new tools or solutions announced today. According to Hanslovan, that will remain true indefinitely. “We have no intent and no plans to change our price, because we’re at a healthy margin level,” he says.
Huntress is similarly committed to charging one rate for its entire portfolio of services rather than collect individual fees for each component of its platform. That’s in distinct contrast, Hanslovan asserts, to vendors who make partners pay an additional dollar or two per endpoint per month every time they roll out a new solution.
“You end up with so many products that you can’t afford the darn thing at the end of the day, or the MSP has to constantly raise their client’s prices,” Hanslovan says. “We’re enabling our MSP partners to build a security model that’s predictable.
Huntress plans to continue adding solutions without raising prices as new exploits and threat vectors materialize.
“I have probably a dozen more security-related services that we’ll add,” Hanslovan says. “The platform isn’t finished. I don’t think we’re ever going to say the platform is finished until hackers pack it up and go home.”
Later this year, the company plans to introduce a managed version of Windows Defender, a free endpoint security solution from Microsoft that has outperformed better-known antivirus systems in Huntress’s internal testing. “Windows Defender was actually catching just as much, if not sometimes more than, some of the paid-for products,” Hanslovan says. Partners will have the option of using the managed Windows Defender service in place of or alongside the antivirus solutions they already use.
Founded five years ago, Huntress has some 1,300 partners at present and raised $18 million in Series A funding this February. The company has planned to deliver a family of security solutions that complement its initial persistent foothold offering from the first. Now, according to Hanslovan, it’s ready to take the first significant step toward that objective.
“We’re growing constantly. We’re well trusted in the community. We’re able to take a little bit more risk now,” he says.