Threat hunting involves proactively searching through logs, endpoints, NetFlow traffic, DNS data, and any other security source for malicious activity on the network that may not be detected by existing security tools. Threat hunting is the first step in a ransomware protection process—it has to be integrated into the regular security workflow.
« Back to Glossary Index