GETTING THE MOST OUT OF ACTION1 WITH PSACTION1

This Wednesday | 11 AM EDT / 5 PM CEST

Action1 5 Company News 5 Action1 Unveils AI-Based Threat Actor Filtering to Thwart Abuse of Its Remote Management Platform by Ransomware Groups

Action1 Unveils AI-Based Threat Actor Filtering to Thwart Abuse of Its Remote Management Platform by Ransomware Groups

Houston, Texas, December 6, 2022

Action1 Corporation, provider of the #1 cloud-native patch management platform designed for work-from-anywhere organizations, today announced that it has upgraded its service with AI-based detection of abnormal user behavior and automated blocking of threat actors. With this upgrade, the company aims to combat the growing threat of scams and cyberattacks in which hackers misuse legitimate tools to deploy ransomware in corporate environments or connect to individuals’ computers to steal money and data.

The Action1 enhancement helps ensure that any attempt at misuse is identified and terminated before cybercriminals accomplish their goals. It scans user activity for suspicious patterns of behavior, automatically suspends potentially malicious accounts, and alerts Action1’s dedicated security team to investigate the issue. Consequently, this upgrade will help assure that Action1 is used only for good reasons. Meanwhile, thousands of IT professionals use the platform to automate OS and third-party patching and endpoint management.

In 2021, 23,903 people reported losing more than $347 million due to tech support scams, many of which involved well-recognized remote access tools, according to the FBI. In 2022, RMM tools have been abused by numerous ransomware groups, and even a single group of this kind can breach over 90 organizations.

The accessibility of remote access and remote monitoring tools eliminates the need for malicious actors to invest their own time and effort into developing tools for managing attacks, facilitating cybercrime such as ransomware. We think that vendors should take more action to prevent abuse of their solutions as a part of the common struggle against this threat.

Mike Walters, VP of Vulnerability and Threat Research at Action1.

About Action1


Action1 is an autonomous endpoint management platform that is cloud-native, infinitely scalable, highly secure, and configurable in 5 minutes—it just works and is always free for the first 200 endpoints, with no functional limits. By pioneering autonomous OS and third-party patching – AEM’s foundational use case – through peer-to-peer patch distribution and real-time vulnerability assessment without needing a VPN, it eliminates costly, time-consuming routine labor, preempts ransomware and security risks, and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001.


The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a multi-billion-dollar industry-leading cybersecurity company.

Setup in minutes to reduce your cyber risks and costs:

Recent News